CrowdStrike has launched Project QuiltWorks, a coalition bringing together Accenture, EY, IBM Cybersecurity Services, Kroll, and OpenAI.
This effort is designed to help organizations identify and remediate vulnerabilities in their production code discovered by advanced artificial intelligence models. We also leverage models from OpenAI and Anthropic, along with CrowdStrike’s proprietary vulnerability discovery and threat intelligence capabilities.
The announcement comes as security groups warn that new AI systems are finding logic bugs, design flaws, misconfigurations, and exploit paths that traditional scanning tools and manual code reviews may miss. This has narrowed the gap between the discovery of vulnerabilities and their potential exploitation, increasing the pressure on security teams to quickly determine which issues are most important.
The coalition assesses customers’ current security posture, scans applications and codebases, ranks findings based on exploitability and business impact, and guides remediation efforts. CrowdStrike also introduced Frontier AI Readiness and Resilience Service, which provides continuous customer engagement through a renewable subscription model.
Board pressure
CrowdStrike has positioned its new offering in response to growing board-level concerns about whether organizations are exposed to weaknesses revealed by AI-assisted analytics. The underlying assumption is that vulnerability discovery is now happening faster than many internal security and software teams can manage alone.
“As frontier AI accelerates vulnerability discovery, every board of directors around the world is asking CISOs the same question: Are we at risk or are we protected?” said George Kurtz, CEO and Founder of CrowdStrike.
“Project QuiltWorks is a way for the industry to come together to provide every organization with the answers boards need,” Kurtz said.
CrowdStrike said its Falcon platform uses adversary intelligence and attack vector analysis to determine which vulnerabilities are realistically reachable and exploitable. Additionally, the company added that its extensive partner network includes more than 10,000 certified professionals who can support remediation efforts within customer environments.
Partner role
Services for Consulting and Incident Response groups within the coalition are focused on helping customers move from finding weaknesses to remediating them. Partner comments also point to increased customer demand for guidance on AI-related software risks.
“While AI brings new ways of operating, CISOs must address the risks it brings to the software development lifecycle. Through Project QuiltWorks, Accenture and CrowdStrike will provide operational enhancements to fix code-level issues and help clients build professional protection,” said Harpreet Sidhu, Accenture Global Lead of Cybersecurity.
“In the era of frontier AI, innovation and risk are accelerating simultaneously, and most organizations are unprepared to manage what that means. Project QuiltWorks is designed to help enterprises manage this new class of vulnerabilities at scale,” said David Cooper, EY Americas Cyber Commercial Leader at EY.
IBM described AI-driven vulnerabilities as a distinctive and rapidly changing risk category for large organizations.
“The frontier model is creating a new category of enterprise threats that are rapidly changing, systemic, and increasingly autonomous. We are actively working with our clients to assess their security posture and strengthen their readiness to respond to these new AI-driven vulnerabilities. CrowdStrike, Project QuiltWorks, and IBM’s Autonomous Together with Security, we are extending this approach to enable our clients to manage this new class of risk at machine speed,” said Mark Hughes, Global Managing Partner, Cyber Security. Services, IBM Consulting.
Kroll noted strong customer concerns related to the use of AI and internally developed applications.
“We have a deep history of working with CrowdStrike to deliver the results organizations need to overcome adversarial disruptive efforts by securely deploying transformational technologies at scale and building more resilient digital organizations.More than 90% of our clients say they respond to cyber incidents related to the use of AI, and our offensive security experts believe that in-house AI We continue to see a significant increase in enterprise vulnerabilities to developed apps, and as frontier AI models bring a new wave of vulnerabilities, our participation in Project QuiltWorks is the next step in ensuring our customers are protected and prepared,” said Dave Burg, Global Head of Cyber and Data Resilience at Kroll.
OpenAI tied this announcement to its Trusted Access for Cyber program.
“AI is transforming cybersecurity, and defenders need advanced intelligence to keep up. Trusted Access for Through Cyber, we are putting more powerful capabilities into trusted hands to accelerate vulnerability discovery and remediation, improve resiliency, and ensure the security of critical software across the ecosystem. We are proud to support CrowdStrike’s project QuiltWorks and its focus on practical collaboration for a more secure digital world.
The announcement highlights how cybersecurity vendors, consultancies, and AI developers are building a services market around the risks created by the same generative AI systems currently employed across software development and security operations. It also reflects a broader industry shift from simply detecting more flaws to becoming an immediate vector of attack and determining which flaws should be fixed first.
