Investing.com’s stocks of the week
The first pure-play cybersecurity company to cross $5 billion in annual recurring revenue just did it during the biggest cyber warfare escalation in modern history. That’s not a coincidence.
CrowdStrike (CRWD) delivered a blockbuster fourth quarter on Tuesday night, beating Wall Street on every metric that matters — revenue, earnings, ARR, and free cash flow — while CEO George Kurtz explicitly tied the results to a world where AI is "weaponizing adversaries to attack with increased speed, sophistication, and precision." He wasn’t being hypothetical. Iran’s internet blackout is now in its fifth day, cyberattacks on Gulf state infrastructure are accelerating, and the U.S. State Department just ordered evacuations from multiple Middle Eastern embassies.
And yet the stock is down 21% from its 52-week high. Here’s why that disconnect won’t last.
The Numbers: CrowdStrike’s Best Year Ever
Let’s start with what actually happened. Q4 revenue hit $1.31 billion, up 23% year-over-year and ahead of the $1.30 billion consensus. Adjusted earnings came in at $1.12 per share versus the $1.10 estimate. Both are solid beats, but the real story is underneath the headline numbers.
Net new ARR — the metric that matters most for a subscription cybersecurity business — surged to $331 million in the quarter, up 47% year-over-year. That’s an all-time record, and it pushed ending ARR to $5.25 billion. "FY26 will go down in our history books as CrowdStrike’s best year yet," Kurtz said on the earnings call.
For the full fiscal year, CrowdStrike crossed $1 billion in net new ARR for the first time ever — a 25% increase from the prior year. Free cash flow hit $376 million in Q4 alone, a 29% margin, and $1.24 billion for the full year. Operating income reached $326 million for the quarter, with the full-year figure topping $1 billion for the first time.
The Falcon Flex subscription model is turbocharging expansion. Flex ending ARR reached $1.69 billion, up more than 120% year-over-year, with the average customer seeing a 26% ARR lift after adoption.
Cloud, next-gen identity, and next-gen SIEM collectively grew north of 45% to more than $1.9 billion in combined ARR.
The Iran War Changes the Cybersecurity Calculus
Here’s the thing most investors are missing. This isn’t just another strong software quarter. The geopolitical backdrop has fundamentally shifted the demand curve for cybersecurity spending.
Iran’s Revolutionary Guard has been executing coordinated cyberattacks against Gulf state infrastructure since the conflict began. Iranian drone strikes hit UAE facilities, prompting Dubai and Abu Dhabi exchanges to close for two days. South Korea’s Kospi crashed 12% in a single session. The U.S. is scrambling to secure Strait of Hormuz shipping lanes while simultaneously defending against what Vital Knowledge’s Adam Crisafulli described as "a leaderless Iranian government executing a prolonged retaliatory response aimed at sowing chaos."
Kurtz directly addressed this on the call: "We are seeing this play out in real time in the Middle East as emboldened adversaries fuel nation-state activity." CrowdStrike’s Charlotte AI agent — its flagship security product — saw usage spike more than 6x year-over-year, while AI-DR (AI Detection and Response) grew 5x versus the prior quarter despite being available for only a few weeks.
Every government agency, defense contractor, energy company, and financial institution with Middle East exposure is re-evaluating its cyber defense posture right now. That translates directly to accelerated procurement cycles for the platform leaders.
How to Play the Cybersecurity Boom
CrowdStrike is the obvious headliner, but the wartime cybersecurity trade extends well beyond a single stock. Here are five ways to position:
CrowdStrike (CRWD) — ~$372. The king of endpoint security and the only pure-play cyber firm at $5 billion-plus ARR. Wall Street’s median price target sits around $487 after post-earnings adjustments from Morgan Stanley, with BMO Capital at $500 and Needham at $475. Even the most conservative revised target implies 25%+ upside. The company guided Q1 FY2027 revenue of $1.36 billion (23-24% growth) and full-year revenue of $5.87-$5.93 billion. At 16x forward revenue with this growth profile, the valuation compression has gone too far.
Palo Alto Networks (PANW) — ~$191. The broadest cybersecurity platform on the market after its CyberArk acquisition closed in February. Q2 revenue of $2.59 billion beat estimates, and the company just received a double upgrade from Arete to buy ahead of CrowdStrike’s report. Analysts at Deutsche Bank maintain a $220 target, while Oppenheimer has a $245 price objective. The firewall refresh cycle is a 2026 tailwind that hasn’t fully played out.
Fortinet (FTNT) — ~$80. The value play of the group, trading at just 33x earnings versus CrowdStrike’s premium multiple. Q4 revenue grew 15% to $1.91 billion with billings up 18% to $2.37 billion. Fortinet’s hardware refresh cycle — where enterprises must upgrade aging FortiGate firewalls — is set to accelerate through 2026. TD Cowen recently upgraded to Buy, arguing that fears about AI replacing security software are wildly overstated. Analyst consensus target: $90, implying 12% upside.
Zscaler (ZS) — ~$147. The most beaten-down name in the group, having fallen nearly 56% from its 52-week high of $337. But Q2 FY2026 revenue grew 26% to $816 million, ARR expanded 25%, and CEO Jay Chaudhry forecasts "50 to 100 AI agents for every employee" — all needing zero-trust security. Stifel recently cut its target to $180 but maintained a Buy rating. Oppenheimer has a $280 objective. At this price, you’re buying a 25%-growth cloud security leader at roughly 5x forward revenue.
Global X Cybersecurity ETF (BUG) — For investors who want broad exposure without single-stock risk, BUG holds the entire cybersecurity ecosystem including all four names above.
It’s the cleanest way to play the sector rotation into cyber defense without picking individual winners.
The Bear Case — and Why It’s Fading
The obvious risk is valuation compression continuing if the broader software selloff deepens. Cybersecurity stocks got caught up in the AI-disruption panic after Anthropic’s Claude Cowork launch in early February, and names like CrowdStrike and Zscaler are still well below their January levels.
There’s also the question of whether CrowdStrike’s Q1 guidance was underwhelming. The $1.36 billion midpoint was only slightly above consensus, and full-year EPS guidance of $4.84 came in roughly in line. Morgan Stanley’s Keith Weiss cut his target from $537 to $487, while Canaccord Genuity slashed to $400.
But my read is that these concerns are backward-looking. The Iran conflict has created a structural shift in cybersecurity demand that won’t reverse when the war ends. Enterprises that accelerate their cyber spending during a geopolitical crisis rarely cut it afterward. And with AI simultaneously expanding the attack surface and driving demand for next-gen security platforms, CrowdStrike sits at the exact intersection of the two biggest secular trends in enterprise tech.
While my previous analysis highlighted oil as a tactical hedge for current geopolitical volatility, CrowdStrike (CRWD) represents a structural pillar of modern ESG governance. In the face of increasing hybrid warfare and infrastructure threats, cybersecurity is no longer just a technical expense; it is a critical ’Social’ and ’Governance’ requirement. By protecting global digital integrity, companies like CrowdStrike provide the ’digital resilience’ necessary for a sustainable global economy, offering a growth trajectory that aligns long-term sustainability with immediate security needs
What to Watch
Three catalysts on the near-term horizon. First, Nonfarm payrolls on Friday (March 7) — if the jobs data comes in hot, it reinforces the economic resilience narrative that supports enterprise IT spending even during geopolitical stress. Second, CrowdStrike’s Fal.Con Gov 2026 conference on March 18 in Washington, D.C. — expect government contract announcements and updated defense-sector demand commentary. Third, watch for Palo Alto Networks’ Q3 report (May 26) and Zscaler’s earnings (May 28) to confirm whether the wartime demand acceleration is showing up across the sector.
Cybersecurity was already a secular growth story. The war just gave it rocket fuel.