A new analytic story called Okta MFA Exhaustion and updated analytic story Suspicious Okta Activity with 8 new detections in response to the recent successful attacks to Uber, CloudFlare and Cisco that abused MFA push spam against Okta as a common technique.
Bingo! 10 Security Standards in 2022 You Can’t Live Without: RSA Top-Rated Session Follow-up
If you had a chance to watch the original top-rated RSA 2022 session with Kirsty Paine and Bret Jordan, tune in for an exclusive follow-up where they share new insights since the presentation was delivered and answer questions from viewers on October 26th. This session will not be recorded or available on demand, so be sure to register today.
Join Patrick Coughlin (GVP Security Portfolio Market Strategy at Splunk) and Mike Rothman (General Manager at Techstrong Research) for a fireside chat in which they dive into the current security landscape, the evolution of security tooling, the benefits of a data-centric approach to security, and predictions on the state of SOCs over the next five years. Click here to register
ML in Security: Risky SPL Detection with MLTK
Join Splunk Machine Learning experts Greg Ainslie-Malik, Abhinav Mishra, and Kumar Sharad as they dive into specific examples of how the Splunk team is using ML to detect risky SPL and how it relates to the Machine Learning Toolkit (MLTK). Click here to register.
You can also read more about ML-based detections to help find users running highly suspicious SPL commands in this blog from the Splunk Threat Research Team.
It's been a busy month for Splunk Lantern, with a host of fresh new Getting Started Guides, use cases and product tips that have been added to our site.
We’ve also launched a new feedback widget! You can now use the orange tab on the left-hand side of our pages to tell us how articles are working for you, or where improvement is needed. Please take the time to leave feedback on our articles so we can make sure our content is effective in helping you succeed with Splunk.
Splunk Education has been working hard behind-the-scenes to prepare our Splunk 9.0 platform training release. The first 9.0 courses were released late September and we will continue to roll out updated training content in the coming weeks and months. Splunk Administrators who will be administering Splunk 9.0 should definitely check out the upgraded versions of Splunk System Administration and Splunk Data Administration with expanded content and new Q&A slides.
Stay tuned for more exciting news in the months to come about an expansion to our free training offerings and (maybe) even a new certification in early 2023!