Security Blogs

Learn how to enhance PowerShell threat detection in UBA by effectively onboarding Windows events. Our step-by-step guide covers XML event log formats and Splunk integration, ensuring robust security against cyber threats.

Explore SDDL in Windows security with our comprehensive guide to help enhance your defensive strategy against privilege escalation attacks.

Explore the impact of autonomous adversaries on cybersecurity as AI and LLMs evolve.

Explore DECEIVE: an AI-powered proof-of-concept honeypot by SURGe. Learn how AI simplifies cybersecurity with dynamic simulations and session summaries, paving the way for innovative security solutions.

The Splunk Threat Research Team announces the release of the Enterprise Security Content Update (ESCU) app 5.0.

We are delighted to announce that our Cloud SOAR solution has successfully completed the IRAP assessment.

Discover how AI and Large Language Models (LLMs) enhance cybersecurity operations for Blue Teams.

Splunk's Asset and Risk Intelligence enhances security by uncovering hidden vulnerabilities, prioritizing critical threats, and offering dynamic risk scoring for proactive risk mitigation and compliance.

Leverage Cisco Talos’ threat intelligence through Cisco Talos Intelligence for Enterprise Security, the Cisco Talos Intelligence connector for Splunk SOAR, and as a globally enabled feature in Splunk Attack Analyzer.