CrowdStrike and Seraphic Security have entered into a definitive agreement under which CrowdStrike will acquire Seraphic.
The acquisition is intended to extend CrowdStrike’s Falcon platform directly into the web browser, reflecting the growing importance of browsers as the primary execution layer for modern work, cloud applications and AI-driven agents. The financial terms of the deal have not been disclosed.
CrowdStrike provides cloud-native cybersecurity solutions that protect endpoints, workloads, identities and data through its Falcon platform, which aggregates vast volumes of endpoint telemetry and threat intelligence to detect and prevent attacks in real time. The company has increasingly positioned its platform around identity protection, zero trust architectures and securing distributed workforces operating across cloud and hybrid environments.
Seraphic develops browser-native security technology that enforces protection directly within the browser runtime, without requiring organisations to mandate a single enterprise browser or reroute traffic through latency-heavy network controls. Its technology works across Chrome, Edge, Safari, Firefox and agentic browsers, on both managed and unmanaged devices, addressing what many security teams view as a critical blind spot given that the majority of enterprise work now takes place inside browser sessions.
Through the acquisition, Seraphic’s in-browser protection will be integrated with CrowdStrike’s Falcon platform, combining deep, in-session browser telemetry with endpoint signals and threat intelligence. When paired with SGNL’s continuous authorisation technology, the combined platform aims to enable dynamic, risk-based access decisions that are granted and revoked in real time, rather than relying on static permissions.
CrowdStrike said the integration will support a unified next-generation identity security strategy, protecting interactions from the endpoint, through the browser session, and into the cloud. Use cases highlighted include securing enterprise AI access at the browser layer, enforcing in-session zero trust controls beyond initial login, delivering next-generation web data loss prevention, disrupting session-based attacks such as phishing and man-in-the-browser exploits, and extending protection to unmanaged and BYOD environments without deploying a full endpoint agent.
CrowdStrike CEO George Kurtz said, “Productivity requires flexibility and security; users want to work in their browser of choice. Seraphic delivers exactly that. By decoupling security from the browser itself, we can turn any browser into a secure enterprise browser, without forcing change or slowing productivity. With our vast endpoint signals combined with Seraphic’s in-session visibility and SGNL’s dynamic authorization, we are defining the future of Zero Standing Privilege for the modern agentic workforce.”
Seraphic CEO and co-founder Ilan Yeshua said, “The browser is where modern work happens. In joining CrowdStrike, we are bringing platform-level protection to the most important execution layer in the enterprise, ensuring that zero trust is a continuous reality, not just a gateway check.”
Keep up with all the latest RegTech news here
Copyright © 2026 RegTech Analyst
Copyright © 2018 RegTech Analyst
