Phishing hits a new level of quality

Hello community,

In recent weeks I’ve noticed that the quality of phishing e-mails I’m receiving (even to my personal account) have reached a new quality. They are getting better and better every day and even the latest spam filters let them through.

Why are they better?

stick_figure_fishing_pc_800_clr_3474

Let’s look at one currently being sent out to many e-mail addresses that appears to be from DHL about tracking orders on the way to your house. For the German speaking market the quality is very good. Previously, end users have easily detected this kind of phishing attack as they contained spelling errors or bad translations form Google translate. Today they no longer include spelling errors and even the graphics and the branding of the e-mail look …

» Continue reading

.conf2014 Highlight Series: Splunk for Data Science

LGO-conf2015-RGB

.conf2015 registration is open!
Also, the first round of speakers have been announced for .conf2015.

In anticipation of .conf2015: The 6th Annual Splunk Worldwide Users’ Conference in Las Vegas this September, we continue our #TBT series of .conf2014 highlights. This week we revisit Olivier De Garrigues and Tom LaGatta’s presentation explaining how data scientists obtain insights from their data.

Skill Level:
Advanced

Solution Area:
Business Analytics

Splunk:
Splunk Enterprise

Presentation Overview:
Data scientists utilize a variety of tools and techniques to obtain insights from data. In this session, we discuss where and how Splunk fits into the data scientist’s tool belt. We highlight Splunk’s built-in statistical capabilities and integrate external statistical and graphical tools to showcase data preparation, predictive …

» Continue reading

Smart AnSwerS #27

Hey there community, and welcome to the 27th installment of Smart AnSwerS!

You know you’re in the office later than usual when the central HVAC system shut off promptly at 6pm over an hour ago and the building is either full of boisterous conversations and laughter from hard working Splunkers unwinding, or an eerie silence if folks decided to unwind elsewhere. It’s been silent for the past hour, so I think it’s that’s my cue to wrap things up and crank out some of the awesome material I’ve hunted down for you, by you :)

Check out this week’s featured Splunk Answers posts:

Is there a list of Splunk apps that need developing?

rkent is new to developing Splunk …

» Continue reading

Oooooooh, Shiny… Icons!

Screen Shot 2015-06-25 at 1.16.53 PMWho doesn’t love building “shiny” dashboards and getting the following reaction from their  viewers? One trick to add some extra flare to your dashboards is replacing your single value rangemap icons with your own images that change color or to a different image depending on the value. This even includes animated .gif or svgs! For example the Operational Intelligence dashboard below shows one use case of single value icon replacements. In fact, the “Power” and “HVAC” icons on the bottom right are animated .gifs and both change color and spin faster according to the single value result. Cool eh? Let’s see how this is done so you can build your own!  Note: This only works on 6.1.x and 6.2.x!

Additionally …

» Continue reading

Introducing the Splunk App for Stream 6.3 Release!

We just improved our popular and free Splunk App for Stream! In the new Splunk App for Stream 6.3 release we’ve introduced Distributed Forwarder Management (DFM), a functionality that simplifies configuration while increasing administration flexibility. The new 6.3 release is available now on Splunkbase.

As a flexible software solution, you can deploy the Splunk App for Stream anywhere in the network—on-prem or cloud environments. Your implementation can be simple—collecting data from only a handful of SPAN ports, or very complex—with hundreds of different globally distributed Stream forwarders gathering data from endpoints. If your monitoring needs are more complex, you can target and customize how and where to deploy Stream to collect wire data to meet those needs more precisely.…

» Continue reading

Splunk Apptitude App Contest: Hear from previous winners and enter now

Screen Shot 2015-04-20 at 3.35.48 PM

The Splunk Apptitude App contest is entering its final month and there’s still time for you to enter for a chance to win up to $150,000.

Earlier this month we were fortunate to catch up with past winners Erica Feldman, Rich Acosta and Chris Summers to discuss their entries and to gain some insight into their participation.

Other than the obvious financial incentives, what was it that attracted you to the Splunk Apptitude contest?

Chris: I’ve been working with SCCM for about 12 years so it’s a product I’m very familiar with. I’d been wanting to work with Splunk for a long time and I saw this an opportunity to finally get to know the product. I wanted

» Continue reading

24 Million CDC US Birth Records and Splunk #vitalstatsviz

Births vs. Mothers Age

The CDC – like most government bodies the world over – are starting to make more, and more data publicly available to advance research.

In January the CDC posted a blog post (since deleted) challenging the public to work with their Vital Stats datasets, including both birth and mortality data.

Over the coming weeks I’m going to post some of my findings (and workings) from analysing these datasets alongside other sources including weather and employment, all in Splunk.

In an optimistic mood I started with birth data.…

» Continue reading

Is the secret to (big) data success collect once and use many?

swiss_army_knife_512373Many moons ago, I used to write code, badly. I learnt to program in COBOL, PL1 and JCL (Job Control Language). I then moved on to programming Java which promised portability, reuse and “write once, run many”. I’ve spent the last few weeks talking to a lot of Splunk customers and it struck me that the companies having the most success and making the best case for value of big data are the ones who are using the same data for multiple purposes. It got me thinking if there is something in that promise of Java many years ago that we can learn from with big data. Is the secret for big data success “collect once and use many”?

 …

» Continue reading

Smart AnSwerS #26

Hey there community! Welcome to the 26th installment of Smart AnSwerS.

This just in! The documentation for the join command has been recently updated by our very own senior technical writer Laura Stewart! I used to check that page every now and then, only to find a tumbleweed rolling by. Well, that didn’t really happen, but that’s what I imagined in my head. It was in need of some tender loving care, and it has finally undergone a complete overhaul. If you’d like to provide input about the new content, feel free to navigate to “Was this topic useful?” at the bottom of that page to leave positive constructive feedback :) After you’re done perusing through the join topic makeover…

Check …

» Continue reading

Integrating with Splunk: You Gotta Think Outside the Box

This morning, a question was asked about integrating with Splunk that started with something like, “but I can’t send syslog from my system, so how can I get that data in Splunk?” It really doesn’t matter what system or what data; before digging in, I already knew that the answer was out there.

“But wait a second, Hal, how could you know that?”, you might be thinking.

Well, it’s just a matter of knowing a bit about how computer systems work, and understanding that Splunk has many ways of ingesting data. You see, at a very high level, there are only two ways that Splunk can integrate with another system. I’ll call these integration types “intentional”, and “operational”. Let’s define them:…

» Continue reading