Security Blogs

Splunker James Hodgkinson explains how AI-driven tools can revolutionize vulnerability investigation and prioritization.

The Splunk Threat Research Team observed actors performing minimal intrusive operations to avoid detection, with the exception of artifacts created by accounts already compromised.

Discover how Splunk Enterprise Security transforms SecOps with comprehensive visibility, contextual threat detection, and efficient operations. Learn from PeerSpot users how this leading SIEM solution enhances security management and improves threat response.

Learn how to enhance PowerShell threat detection in UBA by effectively onboarding Windows events. Our step-by-step guide covers XML event log formats and Splunk integration, ensuring robust security against cyber threats.

Explore SDDL in Windows security with our comprehensive guide to help enhance your defensive strategy against privilege escalation attacks.

Explore the impact of autonomous adversaries on cybersecurity as AI and LLMs evolve.

Explore DECEIVE: an AI-powered proof-of-concept honeypot by SURGe. Learn how AI simplifies cybersecurity with dynamic simulations and session summaries, paving the way for innovative security solutions.

The Splunk Threat Research Team announces the release of the Enterprise Security Content Update (ESCU) app 5.0.

We are delighted to announce that our Cloud SOAR solution has successfully completed the IRAP assessment.