Security Blogs
Latest Articles
I Have a Fever, and the Only Cure for It Is More Feedback
A how-to on providing feedback from hunting into security operations
Domestic Intelligence Service of the Federal Republic of Germany Warns About Cyber Attacks
What's happened, how to investigate if you've been affected and what you should do next.
Staff Picks for Splunk Security Reading: June 2018
A selection of presentations, white papers and blog posts you might have missed in June (or before), handpicked from the Splunk security world
Knowledge is Power: Guidance from ICO and NCSC on GDPR Security Outcomes
The GDPR learnings are ongoing - are you keeping up?
Detecting the Hidden Threat Before It’s Too Late
Unchecked, cybercriminals may establish communications channels inside your environment and send periodic beacons back to their own servers. Splunk Enterprise Security can help you stop them.
Staff Picks for Splunk Security Reading: May 2018
A selection of presentations, white papers and blog posts you might have missed in May (or before), handpicked from the Splunk security world
Boss of the SOC (BOTS) Investigation Workshop for Splunk
You've played BOTS with Splunk, now learn the how it all happened? This post discusses a new tutorial app that you can run on the BOTS v1 dataset to learn more about BOTS and have an educational workshop at home (or office)
The Importance of Enforcing Multifactor Authentication in Your AWS Environment
A new detection search in Splunk Enterprise Security Content Update v 1.0.15 helps you monitor for users in your AWS environment for users not being authorized by multiple factors
Clearer Insights and Investigations: Splunk Enterprise Security 5.1
Announcing the release of Splunk Enterprise Security 5.1, featuring a visual refresh compatible only with Splunk Enterprise 7.1
Subscribe to our blog
Get the latest articles from Splunk straight to your inbox.
Connect with Splunk on X
Follow @Splunk
