Security Blogs

Announcing a series of major advancements within Splunk Enterprise Security (ES) designed to further reinforce Splunk ES as the AI-Powered, SecOps platform.

To help security teams cut through the noise, we’re officially launching Top 50 Cybersecurity Threats - a practical field guide to the tactics and techniques shaping today’s threat landscape.

In February, the Splunk Threat Research Team (STRT) had 2 releases of new security content via the Enterprise Security Content Update (ESCU) app (v5.21 and v5.22).

Discover how to leverage your network for threat detection and response. Learn how Splunk and Cisco integrations reduce MTTD, MTTR, and MTTC in modern SOCs.

Detect Kubernetes threats with Cisco Isovalent eBPF telemetry and Splunk. Explore real-world attack simulations, from port scans to privilege escalation.

Learn how attackers abuse Microsoft Management Console (.msc) files and XML loaders to execute malware. Discover detection strategies using Splunk and MITRE ATT&CK.

We explore AI’s journey through decades of innovation to see how it has reshaped the cybersecurity landscape — and what it takes to stay a step ahead.

Splunk Agentic SOC platform is purpose-built to transform the demanding world of the SOC team, making day-to-day tasks significantly easier and more effective.

Stay ahead of cyber threats with the latest Splunk security content. Explore new analytic stories for Shadow AI, Kerberos coercion, and npm supply chain attacks.