First on the scene for Log4Shell
The sun doesn’t set on security. Splunk ensures 24/7/365 security to protect our $3 billion business and our customers’ organizations from a constant barrage of threats. Enter Log4Shell, which splashed onto the scene in late 2021. The zero-day vulnerability in the popular Java logging library allows bad actors to perform remote code execution undetected — critically threatening countless applications worldwide. Splunk didn’t just remediate our own vulnerabilities — we immediately rolled up our sleeves to show our customers how to do the same.
In around 12 hours, the Splunk security threat research team used Splunk Enterprise Security to quickly isolate potentially vulnerable assets, initiate incident response procedures and mitigate the vulnerability. Determined to share critical messaging about Log4Shell, the team then developed a first-to-market response playbook for customers and the broader public. The Cybersecurity and Infrastructure Security Agency recognized Splunk as the first cybersecurity company to issue prescriptive guidance on Log4Shell — with 13 detections and nine playbooks, to be exact.
Our data-agnostic platform helped us make informed decisions when it mattered, and helped us live up to our values — taking care of our customers by acting quickly and equipping them with tools to protect themselves from headline-making threats.