May 2022 | Security Newsletter

May 2022 | Security Highlights

451 Research: Security Teams Need Threat Intelligence Integration

Unprecedented cyber activity over the past several months have raised the value of integrating threat intelligence into security operations. Click here to download this complimentary copy of 451 Research’s Business Impact Brief, Security Teams Need Threat Intelligence Integration, to learn why threat intelligence is fundamental to an organization's security strategy and what organizations can do to discover and make the most of as many intelligence resources as possible.

Taking a Data-centric Approach to Ransomware Defense

A lot has been written on ransomware, but many organizations continue to react tactically to these attacks instead of with mindful intent. Here are two new resources to help you get up to speed with the latest ransomware trends and more importantly how to effectively defend against them.

1. First, download a copy of “An Empirically Comparative Analysis of Ransomware Binaries” to learn how defenders can gain more knowledge and confidence to move “left of boom” with their detections.
2. Second, download the white paper “Commonalities in Ransomware Payloads” to discover how to identify various notorious ransomware and respond to malware payloads.

What is XDR?

Extended detection and response (XDR) is an approach to endpoint-based threat detection that provides holistic protection across enterprise IT environments. Click here to learn more about how XDR works, what benefits it delivers to customers, how it compares to SIEM and SOAR and whether you should consider looking at XDR as part of your security operations toolkit.

.conf22 Security Super Session

SEC1836 - Bolstering Cybersecurity Resilience to Protect Your Organization

Stuck in the vortex of defending against an expanding threat landscape within an increasingly complex environment? Join the security super session on Wednesday, June 15 as we unlock our data-centric approach to achieve cybersecurity resilience, allowing you to withstand unpredictable threats to your business.

Learn how Splunk can deliver end-to-end visibility to detect threats accurately to help reduce business risk, empower your team to respond to attacks faster, and maximize the full potential of integration to accelerate time-to-value. Finally, hear what industry experts and customers say about leveraging security analytics, automation and orchestration, and human-powered expertise to stay ahead of threats.  View Session Catalog

Can't Miss Updates

All the latest events, news and announcements about Splunk products

• Tech Talk: Splunk Observability Use Case Explorer
• Embracing a Hybrid and Multi-cloud World with Splunk Enterprise

Digital Happenings

.conf22
Ready. Set. Innovate.

• How will you attend — in Las Vegas or virtually? Event Pass Details
• Start planning your personalized .conf22 journey. View Session Catalog
• Want to learn in a live, hands-on setting? Attend Splunk University
• Check out what’s happening. View Agenda

Global User Group Week Recap!

The second annual Global Splunk User Group week was another success! With 25 events and more than 200 attendees, Splunk Users all around the world gathered April 4-8 to connect, collaborate, and learn all things Splunk! For many User Groups, this was their first time meeting in-person in over 2 years. Thank you to all who participated! To join your local Splunk User Group, visit usergroups.splunk.com.

It's here - a whole new way to navigate Splunk Lantern!

If you're new to Lantern and don't know what our site is all about, there's no better place to start than the About page. If you're one of the thousands of customers Lantern has helped in the past, head straight on over to our new homepage and explore how easy we've made it to help you find the use case and product guidance you need to put your data to work.

• Are you a new Splunk customer? Select Getting Started on the homepage to find sequenced learning paths to help you onboard Platform, Security, and Observability products.
• Have you passed the onboarding phase and are now searching for actionable tips written by Splunk experts to help you work with your data faster and better? Select a Product Tips link instead.
• Already know what you want to do in your Splunk environment? Use the Select a Use Case drop-down menus for Security and Observability to find step-by-step guidance fast. And if what you click doesn't get you where you wanted to go, open up the left navigation to get an easy look at all the available use cases.
• Ready to find new use cases? The Data Application section connects the most common data types and data sources to guidance on how you can use that data in Splunk today.
• Simply curious what else is possible in Splunk? Review the high-value, Featured Articles on the top of the homepage or scroll to the bottom for a list of New Articles, updated in real time.

As always, be sure to tell us what you think by logging into Lantern with your splunk.com account and sharing your thoughts in the feedback section at the bottom of every article.

Go to school — for Splunk

Join us for Splunk University at the MGM Grand the weekend before .conf22 on June 11-13. View the course offerings here. Splunk Certification will be live in Las Vegas! For information on how to register for an on-site testing center appointment, view the .conf22 Exam Registration Tutorial here (hint: it’s a different process than the normal PearsonVUE exam registration!). Virtual .conf22 participants can also join the party with the discount code SEEYOUINVEGAS for a single discounted exam registration (standard registration process applies).

More updates in the Splunkbase Preview:

Try the new search which has improved autocomplete that is more intuitive. Take a look, give it a try, and share your thoughts with us by clicking the Feedback button on the upper right corner of the page. 

New apps and recent updates:

Splunk Add-on for Amazon Web Services (AWS): With this updated Splunk add-on for AWS v6.0.0, customers will be able to use a single Add-on across all AWS data sources for ingesting data into Splunk!

Splunk ES Content Update: This March 2022 update includes three new Analytic Stories, 20 new and updated Analytics, eight new and update BA Analytics, and other updates.

Splunk Add-on for Unix and Linux: The Splunk Add-on for Unix and Linux works with the Splunk App for Unix and Linux to provide rapid insights and operational visibility into large-scale Unix and Linux environments.  Important: Read upgrade Instructions and test add-on update before deploying to production.

Splunk DB Connect: Splunk DB Connect is a generic SQL database extension for Splunk that enables easy integration of database information with Splunk queries and reports. Splunk DB Connect supports DB2/Linux, Informix, MemSQL, MySQL, AWS Aurora, Microsoft SQL Server, Oracle, PostgreSQL, AWS RedShift, SAP SQL Anywhere, Sybase ASE, Sybase IQ, and Teradata.

Splunk Add-on for Oracle Database: The Splunk Add-on for Oracle Database allows a Splunk software administrator to collect and ingest data from the Oracle Database Server. This add-on can import data directly by monitoring the standard and fine-grained audit trails, trace files, incident, alert, listener, and other logs on the operating system where the Oracle Database Server is installed.

Get guidance at every step of your data journey with Customer Success

We can help you maximize your Splunk investment. Ready to get started? Learn more