Security Blogs

Analyze the BlankGrabber Trojan Stealer and learn how to detect its obfuscation, staging, and exfiltration techniques using Splunk security analytics.

Announcing a series of major advancements within Splunk Enterprise Security (ES) designed to further reinforce Splunk ES as the AI-Powered, SecOps platform.

Splunk's Top 50 Cybersecurity Threats is a practical field guide to the tactics and techniques shaping today’s threat landscape.

In February, the Splunk Threat Research Team (STRT) had 2 releases of new security content via the Enterprise Security Content Update (ESCU) app (v5.21 and v5.22).

Discover how to leverage your network for threat detection and response. Learn how Splunk and Cisco integrations reduce MTTD, MTTR, and MTTC in modern SOCs.

Detect Kubernetes threats with Cisco Isovalent eBPF telemetry and Splunk. Explore real-world attack simulations, from port scans to privilege escalation.

Learn how attackers abuse Microsoft Management Console (.msc) files and XML loaders to execute malware. Discover detection strategies using Splunk and MITRE ATT&CK.

We explore AI’s journey through decades of innovation to see how it has reshaped the cybersecurity landscape — and what it takes to stay a step ahead.

Splunk Agentic SOC platform is purpose-built to transform the demanding world of the SOC team, making day-to-day tasks significantly easier and more effective.