FAQs

No, Falcon Prevent for Home Use is designed to work in parallel with existing antivirus solutions. If you run into errors or conflicts, it may be necessary to temporarily uninstall Falcon Prevent or 3rd party antivirus product for troubleshooting purposes

Falcon Prevent runs silently with no user interface or icons. If a detection or prevention occurs, you will see a notification message with brief details on the issue it detected or blocked.

While it is possible, Falcon Prevent for Home Use must only be installed on PCs that you will use to access to CUIMC resources. Falcon Prevent should not be shared or distributed to others outside of our organization.  

Please contact your Certified IT Group or the CUIMC IT Service Desk.  Please be prepared to provide full details or a screenshot of any message you see from Falcon Prevent or regarding the blocked item(s).

Help with taking a screenshot can be found at: https://www.take-a-screenshot.org

At this point in time Falcon for Home Use is only available for computers running any version of Windows 7, 8 and 10.  Note that Windows 7 is no longer supported at CUIMC (or by Microsoft).

CrowdStrike is planning to release a version for Macintosh but there is not currently an estimated launch date; once it is ready we would need to test at CUIMC to verify before making it available.  If you need antivirus for Mac please see details on CUIT’s Malwarebytes page.

Linux and other OS versions may also be released in the future but there is currently no estimated launch date.

Depending on the severity of the threat reported by Falcon, CUIMC ISO may need to temporarily block your computer and/or account from using certain resources. 

• This would only be done to prevent the spread of ransomware, viruses, or other malicious activity from affecting CUIMC systems and resources, where a risk to our shared environment is deemed high.
• It will NOT affect your ability to use the computer at home, to connect to the Internet in general, etc. The only restrictions would be to block access to CUIMC resources.

If this happens you should receive a notice from your CITG or ISO regarding the reported threat and how any blocks can be removed, but can also contact your CITG as soon as you see a message from Falcon on the computer to determine what action should be taken.

You are able to do that at any point by following steps on the Uninstall Falcon page.  Falcon for Home Use will not remain on your computer in any form after uninstalling; it does not install in your computer’s firmware or in a persistent manner.

CrowdStrike Falcon for home use includes the following.

End-User Functionality:

• End-User notifications - when a threat is detected it will display a notification message on the computer, and send the same message to CUIMC ISO
• Active blocking of malicious activity that Falcon has determined as critical and high confidence

Next-Generation Antivirus with added capabilities over standard antivirus:

• A.I. (Artificial Intelligence) malware detection of novel and targeted attacks
• Global threat intelligence analysis
• Behavior analysis of ransomware, exploitation behavior, lateral movement and credential/password access

CrowdStrike Sensor Visibility and Limitations

• No cloud processing of unknown files, only malicious files through identification of suspicious processes
• No firmware visibility
• The ability to look at code executions (PowerShell, command line etc.)
• Does not manipulate existing antivirus setups; CrowdStrike Home is a supplemental antivirus solution