Phishing hits a new level of quality
In recent weeks I’ve noticed that the quality of phishing e-mails I’m receiving (even to my personal account) have reached a new quality. They are getting better and better every day and even the latest spam filters let them through.
Why are they better?
Let’s look at one currently being sent out to many e-mail addresses that appears to be from DHL about tracking orders on the way to your house. For the German speaking market the quality is very good. Previously, end users have easily detected this kind of phishing attack as they contained spelling errors or bad translations form Google translate. Today they no longer include spelling errors and even the graphics and the branding of the e-mail look …
.conf2014 Highlight Series: Splunk for Data Science
In anticipation of .conf2015: The 6th Annual Splunk Worldwide Users’ Conference in Las Vegas this September, we continue our #TBT series of .conf2014 highlights. This week we revisit Olivier De Garrigues and Tom LaGatta’s presentation explaining how data scientists obtain insights from their data.
Data scientists utilize a variety of tools and techniques to obtain insights from data. In this session, we discuss where and how Splunk fits into the data scientist’s tool belt. We highlight Splunk’s built-in statistical capabilities and integrate external statistical and graphical tools to showcase data preparation, predictive …
Smart AnSwerS #27
Hey there community, and welcome to the 27th installment of Smart AnSwerS!
You know you’re in the office later than usual when the central HVAC system shut off promptly at 6pm over an hour ago and the building is either full of boisterous conversations and laughter from hard working Splunkers unwinding, or an eerie silence if folks decided to unwind elsewhere. It’s been silent for the past hour, so I think it’s that’s my cue to wrap things up and crank out some of the awesome material I’ve hunted down for you, by you
Check out this week’s featured Splunk Answers posts:
Is there a list of Splunk apps that need developing?
rkent is new to developing Splunk …
Oooooooh, Shiny… Icons!
Who doesn’t love building “shiny” dashboards and getting the following reaction from their viewers? One trick to add some extra flare to your dashboards is replacing your single value rangemap icons with your own images that change color or to a different image depending on the value. This even includes animated .gif or svgs! For example the Operational Intelligence dashboard below shows one use case of single value icon replacements. In fact, the “Power” and “HVAC” icons on the bottom right are animated .gifs and both change color and spin faster according to the single value result. Cool eh? Let’s see how this is done so you can build your own! Note: This only works on 6.1.x and 6.2.x!
Introducing the Splunk App for Stream 6.3 Release!
We just improved our popular and free Splunk App for Stream! In the new Splunk App for Stream 6.3 release we’ve introduced Distributed Forwarder Management (DFM), a functionality that simplifies configuration while increasing administration flexibility. The new 6.3 release is available now on Splunkbase.
As a flexible software solution, you can deploy the Splunk App for Stream anywhere in the network—on-prem or cloud environments. Your implementation can be simple—collecting data from only a handful of SPAN ports, or very complex—with hundreds of different globally distributed Stream forwarders gathering data from endpoints. If your monitoring needs are more complex, you can target and customize how and where to deploy Stream to collect wire data to meet those needs more precisely.…
Splunk Apptitude App Contest: Hear from previous winners and enter now
Earlier this month we were fortunate to catch up with past winners Erica Feldman, Rich Acosta and Chris Summers to discuss their entries and to gain some insight into their participation.
Other than the obvious financial incentives, what was it that attracted you to the Splunk Apptitude contest?
Chris: I’ve been working with SCCM for about 12 years so it’s a product I’m very familiar with. I’d been wanting to work with Splunk for a long time and I saw this an opportunity to finally get to know the product. I wanted
24 Million CDC US Birth Records and Splunk #vitalstatsviz
The CDC – like most government bodies the world over – are starting to make more, and more data publicly available to advance research.
Over the coming weeks I’m going to post some of my findings (and workings) from analysing these datasets alongside other sources including weather and employment, all in Splunk.
In an optimistic mood I started with birth data.…
Is the secret to (big) data success collect once and use many?
Many moons ago, I used to write code, badly. I learnt to program in COBOL, PL1 and JCL (Job Control Language). I then moved on to programming Java which promised portability, reuse and “write once, run many”. I’ve spent the last few weeks talking to a lot of Splunk customers and it struck me that the companies having the most success and making the best case for value of big data are the ones who are using the same data for multiple purposes. It got me thinking if there is something in that promise of Java many years ago that we can learn from with big data. Is the secret for big data success “collect once and use many”?
Smart AnSwerS #26
Hey there community! Welcome to the 26th installment of Smart AnSwerS.
This just in! The documentation for the join command has been recently updated by our very own senior technical writer Laura Stewart! I used to check that page every now and then, only to find a tumbleweed rolling by. Well, that didn’t really happen, but that’s what I imagined in my head. It was in need of some tender loving care, and it has finally undergone a complete overhaul. If you’d like to provide input about the new content, feel free to navigate to “Was this topic useful?” at the bottom of that page to leave positive constructive feedback After you’re done perusing through the join topic makeover…
Integrating with Splunk: You Gotta Think Outside the Box
This morning, a question was asked about integrating with Splunk that started with something like, “but I can’t send syslog from my system, so how can I get that data in Splunk?” It really doesn’t matter what system or what data; before digging in, I already knew that the answer was out there.
“But wait a second, Hal, how could you know that?”, you might be thinking.
Well, it’s just a matter of knowing a bit about how computer systems work, and understanding that Splunk has many ways of ingesting data. You see, at a very high level, there are only two ways that Splunk can integrate with another system. I’ll call these integration types “intentional”, and “operational”. Let’s define them:…