Cloudflare Aegis: dedicated IPs for Zero Trust migration
March 13, 2023
Lock down your services with Cloudflare Aegis: dedicated IPs for Cloudflare egress back to your applications....
Mutual TLS now available for Workers
March 13, 2023
Mutual TLS is used to secure a range of network services and applications: APIs, web applications, microservices, databases and IoT devices. With mTLS support for Workers you can use Workers to authenticate to any service secured by mTLS directly!...
How to stay safe from phishing
March 13, 2023
Phishing attacks come in all sorts of ways to fool people. Email is definitely the most common, but there are others. Here are some tips to help you catch these scams before you fall for them....
Locking down your JavaScript: positive blocking with Page Shield policies
March 13, 2023
Starting today, using Page Shield, Cloudflare’s client side security solution, you can ensure only vetted and secure JavaScript is being executed by your user’s browsers. Stop unwanted JavaScript and keep your end user data safe with Page Shield policies....
Deploying firmware at Cloudflare-scale: updating thousands of servers in more than 285 cities
March 10, 2023
We have a huge number of servers of varying kinds, from varying vendors, spread over 285 cities worldwide. We need to be able to rapidly deploy various types of firmware updates to all of them, reliably, and automatically, without any kind of manual intervention....
MORE POSTS
March 07, 2023
The White House’s National Cybersecurity Strategy asks the private sector to step up to fight cyber attacks. Cloudflare is ready
The White House released the National Cybersecurity Strategy aimed at securing the Internet. Cloudflare welcomes the Strategy, and congratulates the White House on this much-needed policy initiative. ...
- By
February 13, 2023
Cloudflare mitigates record-breaking 71 million request-per-second DDoS attack
This was a weekend of record-breaking DDoS attacks. Over the weekend, Cloudflare detected and mitigated dozens of hyper-volumetric DDoS attacks. The majority of attacks peaked in the ballpark of 50-70 million requests per second (rps) with the largest exceeding 71 million rps...
- By
February 02, 2023
Cloudflare's handling of a bug in interpreting IPv4-mapped IPv6 addresses
Recently, a vulnerability was reported to our bug bounty about a bug in the way some of our code interprets IPv4 addresses mapped into IPv6 addresses. ...
- By
January 31, 2023
CVE-2022-47929: traffic control noqueue no problem?
In the Linux kernel before 6.1.6, a NULL pointer dereference bug in the traffic control subsystem allows an unprivileged user to trigger a denial of service (system crash) via a crafted traffic control configuration that is set up with "tc qdisc" and "tc class" commands....
- By
January 25, 2023
Investing in security to protect data privacy
With Data Privacy Day just a few days away, we think it’s important to focus on all the ways security measures and privacy-enhancing technologies help keep personal data private and why security...
- By
January 25, 2023
Armed to Boot: an enhancement to Arm's Secure Boot chain
Enhancing the Arm Secure Boot chain to improve platform security on modern systems....
- By
January 13, 2023
CIO Week 2023 recap
Learn about all the new products, partnerships, and innovations Cloudflare announced during CIO Week to help organizations modernize their IT and security....
- By
January 12, 2023
API-based email scanning
Customers can now onboard O365 domains to Area 1, adding more flexibility on deployment methods....
- By
January 12, 2023
Expanding our Microsoft collaboration: proactive and automated Zero Trust security for customers
As CIOs navigate the complexities of stitching together multiple solutions, we are extending our collaboration with Microsoft to create one of the best Zero Trust solutions available....
- By
January 11, 2023
Email Link Isolation: your safety net for the latest phishing attacks
Email Link Isolation is your safety net for the odd links that end up in people’s inboxes, and they may click. This added protection turns Cloudflare Area 1 into the most comprehensive email security solution when it comes to protecting against phishing attacks....
- By
January 11, 2023
How Cloudflare Area 1 and DLP work together to protect data in email
Customers can leverage the power of Email Security and Cloudflare One to prevent data loss in their corporate network....
- By
January 04, 2023
How Cloudflare can help stop malware before it reaches your app
Today, we’re making the job of application security teams easier, by providing a content scanning engine integrated with our Web Application Firewall (WAF), so that malicious files being uploaded by end users, never reach origin servers in the first place...
- By
November 11, 2022
2022 US midterm elections attack analysis
For Athenian Project and Cloudflare for Campaigns participant websites, overall traffic volume ramped as Election Day approached...
- By
November 02, 2022
Cloudflare is not affected by the OpenSSL vulnerabilities CVE-2022-3602 and CVE-2022-3786
Information on CVE-2022-3602 and CVE-2022-3786, and why Cloudflare was not impacted...
- By