Splunk News

• 

  Up Your Observability Game With Attributes
  • sorangutan  

  1
  1
  Posts
  6
  Views

  

  Splunk Observability Specialist, Derek Mitchell, shares best practices for deciding which attributes to collect with OpenTelemetry and how they can be used with Splunk Observability Cloud to get to triage issues more quickly.
  
  https://www.splunk.com/en_us/blog/devops/up-your-observability-game-with-attributes.html
• 

  Security Insights: Tracking Confluence CVE-2023-22527
  • sorangutan  

  1
  1
  Posts
  8
  Views

  

  In response to CVE-2023-22527, the Splunk Threat Research Team has developed new security detections to support defenders.
  
  https://www.splunk.com/en_us/blog/security/security-insights-tracking-confluence-cve-2023-22527.html
• 

  Text Vectorisation, Clustering and Similarity Analysis With Splunk: Exploring User Agent Strings at Scale
  • sorangutan  

  1
  1
  Posts
  8
  Views

  

  How do you make use of URI path and user agent data to understand what you users are doing or to find malicious behavior? Find out in this blog.
  
  https://www.splunk.com/en_us/blog/tips-and-tricks/text-vectorisation-clustering-and-similarity-analysis-with-splunk-exploring-user-agent-strings-at-scale.html
• 

  Why Knowing the Front-End and User’s Experience of Your Platform is Key to Understanding How that Platform is Working
  • sorangutan  

  1
  1
  Posts
  9
  Views

  

  We have all been there. When you are trying to buy a ticket and the app crashes or loads the next web page when booking a holiday only to find it takes forever and appears to hang. Our frustration level increases and if it continues, we will exit and go elsewhere. With banking apps though, we won’t move straight away but repeated bad experiences here will be remembered and eventually will make us move.
  
  https://www.splunk.com/en_us/blog/devops/why-knowing-the-front-end-and-user-s-experience-of-your-platform-is-key-to-understanding-how-that-platform-is-working.html
• 

  The Splunkie Awards Open Nominations for 2024
  • sorangutan  

  1
  1
  Posts
  9
  Views

  

  The Splunkie Awards are back and more exciting than ever because for the first time this year, we’re bringing the Global Partner Awards to the Splunkies at .conf24.
  
  https://www.splunk.com/en_us/blog/conf-splunklive/the-splunkie-awards-open-nominations-for-2024.html
• 

  Retail in the Era of AI: An Industry Take on Splunk’s 2024 Predictions
  • sorangutan  

  1
  1
  Posts
  14
  Views

  

  Splunk's Derek Dykens shares a look at what retailers and consumers can expect in the year ahead.
  
  https://www.splunk.com/en_us/blog/industries/retail-in-the-era-of-ai-an-industry-take-on-splunk-s-2024-predictions.html
• 

  Observability and Machine Learning [Part 1]
  • sorangutan  

  1
  1
  Posts
  10
  Views

  

  Let's take a look at the general relationship between Observability and ML and how ML can aid in the conversion of raw telemetry into genuine signals of events or state changes.
  
  https://www.splunk.com/en_us/blog/devops/observability-and-machine-learning.html
• 

  Security Insights: Investigating Ivanti Connect Secure Auth Bypass and RCE
  • sorangutan  

  1
  1
  Posts
  12
  Views

  

  The Splunk Threat Research Team has swiftly developed Splunk analytics and hunting queries, helping defenders quickly adapt and respond to emerging threats CVE-2023-46804 and CVE-2024-21887.
  
  https://www.splunk.com/en_us/blog/security/security-insights-investigating-ivanti-connect-secure-auth-bypass-and-rce.html
• 

  When to Automate Recurring Events
  • sorangutan  

  1
  1
  Posts
  7
  Views

  

  Splunk has a public repository of automations for our Security Orchestration and Automation Response (SOAR) tool – the only limit is your imagination.
  
  https://www.splunk.com/en_us/blog/industries/when-to-automate-recurring-events.html
• 

  Building the NextGen Factory with Splunk and Bosch Rexroth
  • sorangutan  

  1
  1
  Posts
  6
  Views

  

  For centuries there have been many wise sayings on how to deal with disruptions and prevail amidst uncertain circumstances. Read on to learn how Splunk and Bosch Rexroth are building the next-generation factory to help manufacturers elevate their resilience and take advantage of new market trends and operating models.
  
  https://www.splunk.com/en_us/blog/industries/building-the-nextgen-factory-with-splunk-and-bosch-rexroth.html
• 

  How to Customise Detectors for Even Better Alerting
  • sorangutan  

  1
  1
  Posts
  4
  Views

  

  Create a Custom Detector and explore first-hand how the right customizations can turn an alert storm into meaningful insights with Splunk Observability Cloud.
  
  https://www.splunk.com/en_us/blog/devops/how-to-customise-detectors-for-even-better-alerting.html
• 

  Scale Your Splunk Cloud Operations With The Splunk Content Manager App
  • sorangutan  

  1
  1
  Posts
  4
  Views

  

  To address the absence of a solution that simplifies the administration of Splunk instances and aligns with Splunk's ultimate goal of focusing on generating value from data, we created the App Content Manager for Splunk.
  
  https://www.splunk.com/en_us/blog/tips-and-tricks/scale-your-splunk-cloud-operations-with-the-splunk-content-manager-app.html
• 

  How to Create Great Alerts
  • sorangutan  

  1
  1
  Posts
  9
  Views

  

  Splunker Koray Harman highlights alerting scenarios to avoid and explores some of the ways to create and customize alerts in Splunk Observability Cloud to go from noise to action and improve your MTTx.
  
  https://www.splunk.com/en_us/blog/devops/how-to-create-great-alerts.html
• 

  Hypothesis-Driven Cryptominer Hunting with PEAK
  • sorangutan  

  1
  1
  Posts
  10
  Views

  

  A sample hypothesis-driven hunt, using SURGe's PEAK threat hunting framework, looking for unauthorized cryptominers.
  
  https://www.splunk.com/en_us/blog/security/hypothesis-driven-cryptominer-hunting-with-peak.html
• 

  AI at Splunk: Trustworthy Principles for Digital Resilience
  • sorangutan  

  1
  1
  Posts
  14
  Views

  

  Building AI responsibly is one thing, but embedding trust into every aspect of our AI strategy is another entirely – and that’s what Splunk sets out to do.
  
  https://www.splunk.com/en_us/blog/platform/ai-at-splunk-trustworthy-principles-for-digital-resilience.html
• 

  Defining & Improving Your Security Posture
  • sorangutan  

  1
  1
  Posts
  3
  Views

  

  What is your security posture? The result of all your security strategies, processes and practices. Get the total low-down on evaluating & improving yours.
  
  https://www.splunk.com/en_us/blog/learn/security-posture.html
• 

  Enter The Gates: An Analysis of the DarkGate AutoIt Loader
  • sorangutan  

  1
  1
  Posts
  11
  Views

  

  The Splunk Threat Research Team (STRT) provides a deep dive analysis of the DarkGate malware and its use of AutoIt.
  
  https://www.splunk.com/en_us/blog/security/enter-the-gates-an-analysis-of-the-darkgate-autoit-loader.html
• 

  AI: Keep Your Feet on the Ground
  • sorangutan  

  1
  1
  Posts
  6
  Views

  

  Splunk is excited about AI, but we're keeping our boots on the ground as we partner with customers to leverage AI to improve efficiency while continuing the essentials via Splunk’s platform.
  
  https://www.splunk.com/en_us/blog/security/ai-keep-your-feet-on-the-ground.html
• 

  Incident Response Plans: The Complete Guide To Creating & Maintaining IRPs
  • sorangutan  

  1
  1
  Posts
  6
  Views

  

  Need to update your incident response plan? Start here! We’ll show how to create one that works, and how to maintain it for the long haul so it stays effective.
  
  https://www.splunk.com/en_us/blog/learn/incident-response-plans.html
• 

  SplunkTalk: The Podcast
  • sorangutan  

  1
  1
  Posts
  6
  Views

  

  The home for SplunkTalk, the podcast that's all Splunk and no junk! Get the full story from Burch and Hal here.
  
  https://www.splunk.com/en_us/blog/learn/splunktalk-podcast.html