Leadership
4 Min Read
Splunk's 'The New Rules of Data Management: Creating Value in the AI Era' report captures trending shifts in data management and examines how organizations are structuring — and should be potentially rethinking — their data strategies.
Featured Articles
SOAR on Azure Now Available
Splunk Security Orchestration, Automation and Response (SOAR) is now available as a native SaaS solution on Azure.
The Splunkie Awards Are Back for 2025 — Let the Nominations Begin!
Nominate data rockstars for the 2025 Splunkie Awards! Recognize customers and partners driving innovation with Splunk.
The High Cost of Security Investigations
Splunk Asset & Risk Intelligence (ARI) can significantly reduce investigation costs, improve analyst efficiency, and accelerate threat containment.
Expanding the Splunk Academic Alliance to Nurture Tomorrow’s Cybersecurity Leaders
The Splunk Academic Alliance Program offers free Splunk Enterprise licenses, training, and now Splunk ES & SOAR.
Embracing Flexibility to Do Great Work
Work in the ways that work for you. Learn how Splunkers define flexibility, and how they work with their teams to make the best work happen.
Security
Logs Are for Campfires: Integrate and Innovate With Splunk Asset and Risk Intelligence
Splunker Jerald Perry explains how to stay ahead of threats with streamlined workflows and comprehensive insights into your security posture.
Exploring AI for Vulnerability Investigation and Prioritisation
Splunker James Hodgkinson explains how AI-driven tools can revolutionize vulnerability investigation and prioritization.
Supercharge Your SOC Investigations with Splunk SOAR 6.4
Splunker Nick Hunter explains how to integrate Cisco Talos threat intelligence, leverage Azure scalability, and streamline investigations.
Security Staff Picks To Read This Month, Handpicked by Splunk Experts
Every month, our Splunk staff of security experts share their favorite reads of the month — this way, you can follow the most interesting, news-worthy, and innovative stories coming from the wide world of cybersecurity.
SNARE: The Hunters Guide to Documentation
Discover the SNARE framework for effective threat hunting documentation.
Hey SDDL SDDL: Breaking Down Windows Security One ACE at a Time
Explore SDDL in Windows security with our comprehensive guide to help enhance your defensive strategy against privilege escalation attacks.
Learn
SIEM: Security Information & Event Management Explained
SIEM is a cybersecurity game-changer, especially for large organizations. Learn key SIEM features and functions & how to choose the right SIEM tool.
IT and Technology Spending & Budgets for 2025: Trends & Forecasts
Tech & IT spending is on the rise in 2025 across the globe. Read more on investment trends and see which regions will spend the most.
What Are SLMs? Small Language Models, Explained
Large language models have changed the world. What about small language models? Learn what SLMs are, how they differ from LLMs, and why SLMs are the future.
Telemetry 101: An Introduction To Telemetry
Telemetry is powerful data that can tell you all sorts of important information. Know what you can do with this useful data — get the full telemetry 101 here.
What are SaaS, PaaS, & IaaS?
Yes, the cloud makes work better. But which cloud model is right for you? Understand how SaaS, PaaS, and IaaS works in this ultimate guide.
What is Observability? An Introduction
In this blog post, we'll look at definitions, best practices, and key concepts around Observability in IT.
Latest Articles
I Scream, You Scream, We All Scream For BOTS!
We are excited to announce our August Boss of the SOC (BOTS) V event! What’s new in BOTS V? I’m glad you asked. This year, we find our favorite brewery, Frothly, converting to a remote model and embracing the cloud for ‘all the things.'
Cyclical Statistical Forecasts and Anomalies – Part 5
When your datasets are far from simple, your anomaly detection techniques must evolve to scale with the growing complexity. In this blog, you will learn various ways to take your anomaly detection to the next level no matter the complexity of your data.
REvil Ransomware Threat Research Update and Detections
On July 2, 2021, REvil group used Kaseya to distribute malware to its on-premises customers. Splunk has pushed out guidance to help understand and detect REvil. Learn more about the REvil ransomeware group, their tactics, and how to detect them using Splunk.
Kaseya, Sera. What REvil Shall Encrypt, Shall Encrypt
Kaseya VSA, remote monitoring management (RMM) software heavily used by managed service providers (MSP), was compromised by REvil, and is being used to distribute ransomware to its on-premises customers. Find out more on how to detect REvil in your environment.
Debugging Microservices with Distributed Tracing and Real-Time Log Analytics
Learn more about how Splunk APM and Splunk Log Observer make debugging microservices with distributed tracing and real-time log analytics fast and easy.
Fashionably Late: The Zero Trust Trend is Here to Stay
Whether you were hip to the zero trust trend before it started being cool, or are arriving fashionably late, learn how to leverage a data-driven approach to achieve zero trust outcomes and improve the overall security capabilities of the organization in the process.
Splunker Stories: Dan Hughes
In our latest edition of our 'Splunker Stories' series, we meet Splunk’s Head of National Government in our UK Public Sector, Dan Hughes.
I Pity the Spool: Detecting PrintNightmare CVE-2021-34527
Read on for details around Detect PrintNightmare (CVE-2021-34527), a critical vulnerability that affects the Print Spooler service and can perform remote code execution.
Distributed Tracing for Kafka Clients with OpenTelemetry and Splunk APM
In this blog, we will cover how to enable distributed tracing for Kafka clients with OpenTelemetry and Splunk APM.
Subscribe to our blog
Get the latest articles from Splunk straight to your inbox.
Connect with Splunk on X
Follow @Splunk
Connect with Splunk on Instagram
Follow @Splunk
