CrowdStrike Extends AI Agent Security Across the SaaS Stack

AUSTIN, Texas – Black Hat USA 2025, Las Vegas – CrowdStrike (NASDAQ: CRWD) today announced a new integration with the OpenAI ChatGPT Enterprise Compliance API, designed to add visibility and governance for AI agents that are transforming how work gets done. CrowdStrike Falcon® Shield now discovers GPTs and Codex agents created in OpenAI’s ChatGPT Enterprise, expanding support for more than 175 SaaS applications. As a cybersecurity platform innovator for the AI era, CrowdStrike helps organizations strengthen governance of AI agent identities and the human identities behind them.

The Growing Challenge of AI Agents in SaaS Environments

As organizations adopt agentic AI to drive automation at scale, the proliferation of AI agents is reshaping SaaS environments. These autonomous agents have non-human identities with persistent privileges and can be hijacked if the associated human identity is compromised. This vulnerability enables adversaries to exfiltrate data, manipulate systems, or move laterally across critical business applications. By increasing the number of identities and accelerating access, AI agents expand the attack surface and the blast radius of a single compromise.

Falcon Shield Integration: Key Features

Falcon Shield’s integration with ChatGPT Enterprise adds governance for AI-driven automation in the SaaS stack by:

• Discovering AI Agents Across SaaS: Surfaces GPTs, Codex agents, and other embedded AI tools across platforms such as ChatGPT Enterprise, Microsoft 365, Snowflake, and Salesforce, providing security teams with enhanced visibility.
• Mapping Agents to Human Creators: Links each AI agent to its human owner to support accountability, trace access, and govern privileges with context. Falcon Identity Protection secures the human identities behind these agents.
• Detecting Risky Behavior: Flags overprivileged agents, GPTs with sensitive action capabilities, and unusual activities by analyzing identity, application, and data context.
• Containing Threats Automatically: Utilizes Falcon® Fusion, CrowdStrike's no-code SOAR engine, to automate responses such as blocking risky access, disabling compromised agents, and triggering automated workflows to mitigate threats swiftly.
• Unified AI Agent Protection: Combines Falcon Shield, Falcon Identity Protection, and Falcon® Cloud Security to provide end-to-end visibility and control over AI agent activity—from the human creator to the cloud systems accessed.

Expert Insight

“AI agents are emerging as superhuman identities, with the ability to access systems, trigger workflows, and operate at machine speed,” said Elia Zaitsev, Chief Technology Officer, CrowdStrike. “As these agents multiply across SaaS environments, they’re reshaping the enterprise attack surface and are only as secure as the human identities behind them. Falcon Shield and Falcon Identity Protection help secure this new layer of identity to prevent exploitation.”

Learn More

To learn more about how CrowdStrike secures AI agents across the SaaS stack, read their blog, visit their website, or visit CrowdStrike at Black Hat booth #2733.

---

About CrowdStrike

CrowdStrike (NASDAQ: CRWD) is a global cybersecurity leader that has redefined modern security with the world’s most advanced cloud-native platform protecting endpoints, cloud workloads, identity, and data. Powered by the CrowdStrike Security Cloud and world-class AI, the Falcon® platform delivers real-time attack indicators, threat intelligence, automated protection, elite threat hunting, and prioritized observability of vulnerabilities. Built with a single lightweight agent architecture, Falcon enables rapid deployment, superior protection, reduced complexity, and immediate time-to-value. CrowdStrike: We stop breaches. Learn more at https://www.crowdstrike.com/

---

Media Contact: Jake Schuster CrowdStrike Corporate Communications press@crowdstrike.com

---

Source: CrowdStrike announcement on StockTitan

---

Frequently Asked Questions (FAQ)

AI Agent Security and Governance

Q: What is the main purpose of CrowdStrike's integration with OpenAI's ChatGPT Enterprise Compliance API? A: The integration aims to provide organizations with enhanced visibility and governance over AI agents, particularly those developed using OpenAI's ChatGPT Enterprise. This is crucial as AI agents are increasingly used for automating tasks within SaaS environments. Q: How does CrowdStrike Falcon Shield help secure AI agents? A: Falcon Shield discovers GPTs and Codex agents created in ChatGPT Enterprise, expanding its coverage to over 175 SaaS applications. It helps organizations govern the identities of these AI agents and the human identities behind them. Q: What are the risks associated with the proliferation of AI agents in SaaS environments? A: AI agents have autonomous, non-human identities with persistent privileges. If the associated human identity is compromised, these agents can be hijacked, leading to data exfiltration, system manipulation, or lateral movement across critical business applications. This expands the attack surface and the potential impact of a breach. Q: How does the Falcon Shield integration map AI agents to human creators? A: The integration links each AI agent to its human owner, enabling accountability, tracing access, and governing privileges with context. This is supported by Falcon Identity Protection, which secures the human identities. Q: What capabilities does Falcon Shield offer for detecting risky AI agent behavior? A: Falcon Shield can flag overprivileged agents, GPTs with sensitive action capabilities, and detect unusual activities by analyzing identity, application, and data context. Q: How does CrowdStrike automate threat containment for AI agents? A: CrowdStrike utilizes Falcon® Fusion, its no-code SOAR engine, to automate responses. This includes blocking risky access, disabling compromised agents, and triggering workflows to mitigate threats rapidly. Q: What CrowdStrike products are combined for unified AI agent protection? A: The unified protection is achieved by combining Falcon Shield, Falcon Identity Protection, and Falcon® Cloud Security. This provides comprehensive visibility and control over AI agent activity from creation to cloud system access.

Crypto Market AI's Take

The cybersecurity challenges presented by the increasing adoption of AI agents in SaaS environments are significant. As organizations leverage these powerful tools for automation, understanding and securing the identities behind them becomes paramount. This is especially relevant in sectors like finance and cryptocurrency, where data sensitivity and transaction integrity are critical. Our platform, Crypto Market AI, focuses on providing AI-driven market intelligence and security solutions for the digital asset space. The integration of robust security measures, like those offered by CrowdStrike, is essential for the safe and effective deployment of AI in this rapidly evolving industry.

More to Read:

• AI Agents: Capabilities, Risks, and Growing Role
• Understanding AI-Driven Crypto Scams
• The Future of Cybersecurity in the Age of AI