Major? I guess the word is subject to interpretation, but it was routine, perhaps too routine. The people they are stopping are always coming up with new stuff to block, and Crowdstrike has to keep up.
The configuration files mentioned above are referred to as “Channel Files” and are part of the behavioral protection mechanisms used by the Falcon sensor. Updates to Channel Files are a normal part of the sensor’s operation and occur several times a day in response to novel tactics, techniques, and procedures discovered by CrowdStrike. This is not a new process; the architecture has been in place since Falcon’s inception.