Hi all, How can we resolve the issue of Cycognito Correlation search not triggering any alerts in Splunk over the past month? index= cycog sourcetype="cycognito:issue" severity="Critical" | stats count, values(affected_asset) as affected_asset, values(title) as title, values(summary) as description, values(severity) as severity, values(confidence) as confidence, values(detection_complexity) as detection_complexity, values("evidence.evidence") as evidence, values(exploitation_method) as exploitation_method, earliest(first_detected) as first_detected, latest(last_detected) as last_detected, values(organizations) as organization by cycognito_id | eval date_found=strptime(first_detected,"%Y-%m-%dT%H:%M:%S.%QZ") | eval control_time = relative_time(now(), "-24h") | where date_found >control_time Thanks in advance..
... View more