CyberHappenings logo
Home Browse Watchlists Experimental About

Track cybersecurity events as they unfold. Sourced timelines. Filter, sort, and browse. Fast, privacy‑respecting. No invasive ads, no tracking.

CrowdStrike Falcon Next-Gen SIEM integration adds Microsoft Defender telemetry ingestion and expands Azure Marketplace availability

First reported
Last updated
1 unique sources, 1 articles

Summary

Hide ▲

CrowdStrike announced integration of Microsoft Defender for Endpoint telemetry into its Falcon Next-Gen SIEM platform, enabling unified threat detection and analytics across third-party endpoint technologies. The integration allows direct ingestion of Defender data, accelerating threat detection through smart filtering and real-time analytics while maintaining interoperability with non-CrowdStrike endpoint solutions. CrowdStrike also launched Falcon Onum, a log management tool acquired in 2024, to scale Defender telemetry processing within the SIEM. Additionally, CrowdStrike solutions became available in the Microsoft Marketplace for the first time, expanding its enterprise reach through Azure Consumption Commitment funds.

Timeline

  1. 03.04.2026 14:53 1 articles · 3h ago

    CrowdStrike integrates Microsoft Defender telemetry with Falcon Next-Gen SIEM and expands Azure Marketplace availability

    CrowdStrike announced direct ingestion of Microsoft Defender for Endpoint telemetry into its Falcon Next-Gen SIEM platform, enabling cross-vendor threat detection and analytics with improved filtering and real-time processing. The integration leverages Falcon Onum, a log management tool acquired in 2024, to scale Defender telemetry processing. Additionally, CrowdStrike solutions are now available in the Microsoft Marketplace for the first time, allowing enterprises to utilize Azure Consumption Commitment funds for CrowdStrike services.

    Show sources
    Open in new tab

Information Snippets

  • CrowdStrike Falcon Next-Gen SIEM now ingests Microsoft Defender for Endpoint telemetry directly, enabling cross-platform threat detection and analytics.

    First reported: 03.04.2026 14:53
    1 source, 1 article
    Show sources

  • The integration supports smart filtering and real-time analytics of Defender telemetry, improving detection efficiency and reducing data overload in the SIEM.

    First reported: 03.04.2026 14:53
    1 source, 1 article
    Show sources

  • CrowdStrike launched Falcon Onum, a log management and real-time pipeline technology acquired in 2024, to process Microsoft Defender telemetry at scale within the Next-Gen SIEM.

    First reported: 03.04.2026 14:53
    1 source, 1 article
    Show sources

  • CrowdStrike offerings are now available in the Microsoft Marketplace (formerly Azure Marketplace), allowing enterprise customers with Azure Consumption Commitment funds to utilize CrowdStrike services.

    First reported: 03.04.2026 14:53
    1 source, 1 article
    Show sources

  • CrowdStrike had previously been absent from the Microsoft Marketplace but maintained presence in the AWS Marketplace since 2017, generating $1 billion in annual revenue by 2024.

    First reported: 03.04.2026 14:53
    1 source, 1 article
    Show sources

  • CrowdStrike’s integration with Microsoft Defender follows years of public criticism by CEO George Kurtz regarding Microsoft’s security practices, including testimony on systemic failures in Windows authentication architecture and critiques of the Midnight Blizzard (APT29) and Storm-0558 incidents.

    First reported: 03.04.2026 14:53
    1 source, 1 article
    Show sources