Threat Hunter Intelligence Report
L
Welcome to Splunk’s Threat Hunter Intelligence Report — a monthly series brought to you by Splunk’s threat hunting and intelligence (THI) team. We research and produce actionable reports on the latest cybersecurity threats and trends — helping organizations stay one step ahead of adversaries, one report at a time.
Sign up now to receive monthly reports on critical cybersecurity topics, including:
- The latest in threats like malware, phishing, fraud, supply chain attacks, ransomware, emerging threats and e-crime.
- Tips and insights on security issues like data breaches, legal and compliance, nation-states and geopolitics.
- In-depth hacker profiles on THI’s “Most Wanted” list.
Missed an update? We’ve got you covered. Check out each month’s report and expert analysis below, published the first Tuesday of every month.
Malware
- May 2021 Report
- A Threat As Old As The Internet: Why We Still Care About Malware (And Why You Should Too)
Cybersecurity Laws & Regulation
Data Breaches
Emerging Threats
E-Crime
Title
Related Articles
Filter
Category
Blog Limit
3
Category
security
Sort Category Shuffle Order
true
Related Articles
Fantastic IIS Modules and How to Find Them
This blog showcases how to enable and ingest IIS operational logs, utilize PowerShell scripted inputs to ingest installed modules and simulate AppCmd and PowerShell adding new IIS modules and disable HTTP logging using Atomic Red Team.
From Prompt to Payload: LAMEHUG’s LLM-Driven Cyber Intrusion
The Splunk Threat Research Team analyzes the LAMEHUG malware, examining its tactics and techniques to provide insights that can help SOC analysts and blue teamers identify and respond.
Detecting dynamic DNS domains in Splunk
While useful legitimately, hackers can use dynamic DNS domains to change IP address rapidly & exploit via malware-evil.duckdns[.]org; how to protect against?