Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Logging

splunk

Paws in the Pickle Jar: Risk & Vulnerability in the Model-sharing Ecosystem

Apr 27, 2023 By Ryan Fetterman In Splunk
Early 2023 has been characterized by an explosion of Artificial Intelligence (AI) breakthroughs. Image generators and large language models (LLMs) have captured global attention and fundamentally changed the Internet and the nature of modern work. But as AI / Machine Learning (ML) systems now support millions of daily users, has our understanding of the relevant security risks kept pace with this wild rate of adoption?
Read Post
splunk

Security Monitoring Explained: How Security Monitoring is Your Foundation for Cybersecurity

Apr 27, 2023 By Muhammad Raza In Splunk
Security Monitoring is the catch-all name for the process of detecting threats and managing security incidents. It’s generally broken into two phases: In this article, let's take a look at what security monitoring means and how it forms the foundation for your cybersecurity posture.
Read Post
splunk

The Threat Hunting Guide: Everything To Know About Hunting Cyber Threats

Apr 26, 2023 By David Bianco In Splunk
Threat hunting has become an increasingly important aspect of cybersecurity, as organizations strive to identify and mitigate security incidents that automated systems may have missed. Yes, the definition of threat hunting can vary, and it generally involves a combination of manual and machine-assisted processes driven by human curiosity and pattern recognition.
Read Post

Coffee Talk with SURGe: 2023-APR-25 The Interview Series live from RSA Conference

Apr 26, 2023 By Splunk In Splunk
Grab a cup of coffee and join Mick Baccio and special guests Juan Andres Guerrero-Saade and Jon DiMaggio for another episode of Coffee Talk with SURGe, live from RSA Conference in San Francisco. Guerrero-Saade and DiMaggio are both contributing authors for Bluenomicon, a new book by SURGe that features stories and advice from security leaders and practitioners. You don't want to miss it!
View Video

SecOps In Seconds: Creating Response Templates in Splunk Mission Control

Apr 26, 2023 By Splunk In Splunk
Streamline your workflows by improving SOC process adherence when you codify your operating procedures into pre-defined templates. Use Splunk Mission Control to speed up investigations with pre-built response templates that include embedded searches, actions, and playbooks to empower security analysts. Model your response plans based on pre-built templates that can be used for security use cases such as “Encoded PowerShell Response”, “Insider Threat” or “Ransomware”. Or build your own templates based on your established processes that are scattered across systems to finally achieve repeatable security operations. This allows you to close the gap between your Splunk ES detections and rapid incident response.
View Video
splunk

Threat Update: AwfulShred Script Wiper

Apr 21, 2023 By Splunk Threat Research Team In Splunk
The Splunk Threat Research Team (STRT) continues to analyze and produce content related to the ongoing geopolitical conflict in eastern Europe where new variances of destructive payloads are being released, targeting government and civilian infrastructure. The sole purpose of these destructive payloads is to decimate infrastructure; there is no ransom or alternative presented, and they need to be addressed as soon as they are detected.
Read Post
devo

US National Security Deep Dive Pillars 2 and 3: Dismantle Threats and Shape Market Forces

Apr 21, 2023 By John Allison In Devo

Last time we looked at The US National Security Strategy Pillar 1: Defend Critical Infrastructure. Today, we are looking at Pillar 2: Disrupt and Dismantle Threat Actors and Pillar 3: Shape Market Forces to Drive Security Resilience. Preventing the attacks in Pillar 1 would not be necessary if the attackers were taken off the board.

Read Post

Coffee Talk with SURGe: 2023-APR-18 NSO Group, LockBit macOS Encryptors, AI in CTI, MSFT Taxonomy

Apr 19, 2023 By Splunk In Splunk
Grab a cup of coffee and join Ryan Kovar, Mick Baccio, and Audra Streetman for another episode of Coffee Talk with SURGe. The team from Splunk will discuss the latest security news, including: Mick and Ryan competed in a 60 second charity challenge about how generative artificial intelligence could be used in cyber threat intelligence, with proceeds benefiting the ACLU. The trio also discussed Microsoft's new threat actor naming taxonomy and the role of attribution in cyber threat intelligence.
View Video
splunk

Are you a good or great boxer? Real-world approaches of building cyber resilience in 2023

Apr 18, 2023 By James Hanlon In Splunk
You must have been asleep not to have heard about Splunk’s new mission - ‘to build a safer and more resilient digital world’. Why have we chosen this? Well, not because it is a snappy little tagline, but because we know how important digital resilience is to all of our customers in our ever changing times.
Read Post

Copyright © 2024 OpsMatters™. All rights reserved.