Himanshu Anand

Navigating the maze of Magecart: a cautionary tale of a Magecart impacted website

2024-03-04

Security Week Magecart Machine Learning Page Shield Developer Platform

E-commerce websites were targeted by a sophisticated Magecart attack, involving a hidden JavaScript code designed to secretly steal Personally Identifiable Information (PII) and credit card details from users...

How Cloudflare’s AI WAF proactively detected the Ivanti Connect Secure critical zero-day vulnerability

2024-01-23

Vulnerabilities WAF Rules WAF WAF Attack Score Zero Day Threats AI WAF

The issuance of Emergency Rules by Cloudflare on January 17, 2024, helped give customers a big advantage in dealing with these threats...

All Cloudflare customers protected from the Atlassian Confluence CVE-2023-22515

2023-10-04

Atlassian CVE WAF

On 2023-10-04 at 13:00 UTC, Atlassian released details of the zero-day vulnerability described as “Privilege Escalation Vulnerability in Confluence Data Center and Server” (CVE-2023-22515), a zero-day vulnerability impacting Confluence Server and Data Center products...

Unmasking the top exploited vulnerabilities of 2022

2023-08-04

WAF Security CISA Vulnerabilities

The Cybersecurity and Infrastructure Security Agency (CISA) just released a report highlighting the most commonly exploited vulnerabilities of 2022. ...

Cloudflare observations of Confluence zero day (CVE-2022-26134)

2022-06-05

Vulnerabilities WAF Zero Day Threats

UTC Atlassian released a Security Advisory relating to a remote code execution (RCE) vulnerability affecting Confluence Server and Confluence Data Center products....

WAF mitigations for Spring4Shell

2022-03-31

WAF Security CVE Vulnerabilities

Cloudflare Managed Ruleset updates for the recent vulnerabilities affecting the Java Spring framework and related software components...