Black Hat Europe 2025: Firepower IDS Flags Unwanted P2P on Rented Gear
Rented hardware often carries digital baggage from previous users. Discover how our NOC team used JA3 fingerprints and Cisco XDR to track down unauthorized P2P syncing in London.
Splunk
Continuous Improvement at Black Hat Europe: Listen to Your Analysts! (They Know What They Need)
When security analysts lack endpoint context, identifying the root cause of a network connection is difficult. Discover how a simple automation workflow enriched XDR incidents with DNS data in minutes.
Lessons Learned from Securing the World’s Largest Cyber Events
Announcing the launch of the Cisco Event SOCs website and the release of our comprehensive Reference Architecture & Operations Guide.
The Leaders Who Make Partnership Real
Congratulations to Cisco’s 2026 CRN Channel Chiefs—exceptional leaders recognized for their commitment to building enduring partnerships, driving innovation, and delivering trusted results for our partners worldwide.
Closing the gap: bitsIO wins Splunkie Award for data and AI-powered nonprofit solutions
Nonprofits face the same sophisticated threats as major enterprises, but they rarely have the same resources. Learn how bitsIO — Splunk's 2025 Social Impact Partner of the Year — is changing that by delivering AI-powered Splunk services to
Meet Cisco at NRF 2026
NRF (National Retail Federation) is Retail’s Big Show, happening in New York City, January 11 – 13, 2026. This year’s theme, “Welcome to the next now,” perfectly encapsulates the transformative shift Cisco is enabling in retail. There’s no better
A Newbie’s Perspective: From Curiosity to Confidence, My SOC Story
A new analyst shares their Cisco Live SOC experience, covering quick onboarding, using Cisco XDR and Endace for incident investigation, and building confidence in threat response.
Have You Seen My Domain Controller?
Windows clients expose Active Directory DNS queries on public Wi-Fi, risking OSINT and credential leaks. Learn from Cisco Live SOC observations how to protect clients with VPNs .
Splunk in Action: From SPL to PCAP
Learn how Cisco Live SOC uses Splunk SPL and Endace PCAP to investigate exposed HTTP authentication and Kerberos activity, securing sensitive data on public Wi-Fi networks.