George Kurtz on CrowdStrike's NVIDIA partnership and the rise of autonomous AI malware
Oct 29, 2025 with George Kurtz
Key Points
- CrowdStrike's Charlotte AI platform now integrates with NVIDIA's Nemotron models to enable edge-level security for on-premises AI workloads, letting single analysts supervise autonomous security agents instead of responding manually.
- Autonomous, GenAI-native malware has been found in the wild, using prompt-driven reasoning to profile hosts and pivot across networks without command-and-control connections, making it harder to detect and attribute than traditional malware.
- AI-generated code and AI-accelerated vulnerability discovery are expanding the attack surface faster than defenders can patch, as both attackers and bug bounty researchers now leverage AI to find flaws at scale.
Summary
George Kurtz, founder and CEO of CrowdStrike, used an appearance at NVIDIA's GTC conference to highlight a deepened partnership between the two companies, with Jensen Huang personally detailing the collaboration in his keynote. The integration centers on CrowdStrike's agentic AI platform, Charlotte AI, which now communicates with third-party AI agents built on NVIDIA's Nemotron open models and NIM inference microservices. The practical aim is edge-level security visibility, particularly for enterprises running on-premises AI workloads where sensitive data such as network diagrams cannot be routed to the cloud.
Charlotte AI repositions human security analysts as supervisors rather than frontline responders, a model Kurtz compares to a remote pilot overseeing a fleet of autonomous vehicles. One analyst, in his framing, can now direct the work that previously required many. The analogy maps directly onto CrowdStrike's internal workforce strategy: rather than mass layoffs, Kurtz describes a flattened hiring curve where existing staff become more productive across functions including legal, sales, and engineering.
Autonomous AI Malware
The most substantive security warning concerns the emergence of autonomous, GenAI-native malware. Unlike traditional compiled executables that signature-based tools can detect, this new class of malware arrives as a script and uses prompt-driven reasoning to profile its host environment dynamically. It determines which system it has landed on, identifies harvestable data, and autonomously pivots across the network to higher-value targets, without requiring a command-and-control connection back to a human operator.
Kurtz describes this as replicating the behavior of elite nation-state threat actors, but without the human in the loop. The absence of a C2 channel makes attribution and interception significantly harder. No specific breach has been publicly named, but Kurtz confirms the malware variant has been found in the wild, making it the clearest documented example of generative AI being weaponized offensively at the infrastructure level.
Vibe Coding as an Attack Surface
Kurtz views the rapid proliferation of AI-generated code, so-called vibe coding, as a compounding vulnerability. He draws a parallel to developers historically copying unvetted code snippets from repositories, propagating flaws at scale. AI coding tools have improved, but inconsistency in output quality remains, and the broader surface area of AI-written software gives adversaries more targets. Critically, AI is now leading bug bounty discoveries, finding software vulnerabilities faster and at greater volume than human researchers, a dynamic that benefits both defenders and attackers.
Business and Brand
CrowdStrike employs roughly 10,000 people. On the sponsorship side, the company maintains a Formula 1 presence, focusing on major US race weekends and using paddock access to host CXO-level customer roundtables that blend cybersecurity discussion with the motorsport brand.