Crowdstrike continues to enhance the falcon product and have released a new feature to the Prevention Policy for Falcon Sensor for Windows version 6.11.12502 or newer. This detection blocks attempts to tamper with the sensor, such as deleting or renaming the sensor’s files and they suggest enabling this feature in most all cases. Pretty snazzy!
Additionally, if you found this helpful, please buy a stranger a cup of coffee the next time you’re at a coffee shop.
