How Cloudflare mitigated yet another Okta compromise
2023-10-20
On Wednesday, October 18, 2023, we discovered attacks on our system that we were able to trace back to Okta. We have verified that no Cloudflare customer information or systems were impacted by this event because of our rapid response. ...
Empowering our partners with the new Tenant Platform dashboard
2023-10-20
We are proud to announce the general availability of our first dashboard for our Tenant Platform, providing an intuitive user interface for agencies and partners to manage their client accounts...
Network flow monitoring is GA, providing end-to-end traffic visibility
2023-10-18
Network engineers often need better visibility into their network’s traffic when analyzing DDoS attacks or troubleshooting other traffic anomalies. To solve this problem, Cloudflare offers a network flow monitoring product that gives customers end-to-end traffic visibility across their network....
Introducing the Project Argus Datacenter-ready Secure Control Module design specification
2023-10-16
The DC-SCM (Datacenter-ready Secure Control Module) decouples server management from the server motherboard. It provides flexibility to implement multiple server management and security solutions with the same server motherboard design...
Malicious “RedAlert - Rocket Alerts” application targets Israeli phone calls, SMS, and user information
2023-10-14
On October 13, 2023, Cloudflare’s Cloudforce One Threat Operations Team became aware of a malicious Google Android application impersonating the real-time rocket alert app, Red Alert, which provides real-time rocket alerts for Israeli citizens...
How Prisma saved 98% on distribution costs with Cloudflare R2
2023-10-12
Cloudflare products provide much of the underlying infrastructure for Prisma Accelerate and Prisma Pulse, empowering user-focused product development. This ongoing collaboration extends to enhancing the Prisma ORM...
HTTP/2 Rapid Reset: deconstructing the record-breaking attack
2023-10-10
This post dives into the details of the HTTP/2 protocol, the feature that attackers exploited to generate the massive Rapid Reset attacks, and the mitigation strategies we took to ensure all our customers are protected...
HTTP/2 Zero-Day vulnerability results in record-breaking DDoS attacks
2023-10-10
The “HTTP/2 Rapid Reset” attack exploits a weakness in the HTTP/2 protocol to generate enormous, hyper-volumetric DDoS attacks. Cloudflare has mitigated a barrage of these attacks in recent months, including an attack three times larger than any previous attack we’ve observed...
Internet traffic patterns in Israel and Palestine following the October 2023 attacks
2023-10-09
On Saturday, October 7, 2023, attacks from the Palestinian group Hamas launched from the Gaza Strip against the south of Israel started a new conflict in the region. Cloudflare's data shows that Internet traffic was impacted in different ways...
Virtual networking 101: bridging the gap to understanding TAP
2023-10-06
Tap devices were historically used for VPN clients. Using them for virtual machines is essentially reversing their original purpose - from traffic sinks to traffic sources. In the article I explore the intricacies of tap devices, covering topics like offloads, segmentation, and multi-queue....
Uncovering the Hidden WebP vulnerability: a tale of a CVE with much bigger implications than it originally seemed
2023-10-05
Recently, Google announced a security issue in Google Chrome, titled "Heap buffer overflow in WebP in Google Chrome." Initially, it seemed like just another bug in the popular web browser. However, what we discovered was far more significant and had implications that extended well beyond Chrome...
Cloudflare's a Top 100 Most Loved Workplace for the second consecutive year in 2023
2023-10-05
We are proud to share that Cloudflare has been certified and recognized as one of the Top 100 Most Loved Workplaces in 2023 by Newsweek and the Best Practice Institute (BPI) for the second consecutive year....
1.1.1.1 lookup failures on October 4, 2023
2023-10-04
On 4 October 2023, Cloudflare experienced DNS resolution problems. Some users may have received SERVFAIL DNS responses to valid queries. In this blog, we’re going to talk about what the failure was, why it occurred, and what we’re doing to make sure this doesn’t happen again...
All Cloudflare customers protected from the Atlassian Confluence CVE-2023-22515
2023-10-04
On 2023-10-04 at 13:00 UTC, Atlassian released details of the zero-day vulnerability described as “Privilege Escalation Vulnerability in Confluence Data Center and Server” (CVE-2023-22515), a zero-day vulnerability impacting Confluence Server and Data Center products...
Waiting Room adds multi-host and path coverage, unlocking broader protection and multilingual setups
2023-10-04
Today, we are thrilled to announce that Waiting Room now supports coverage of multiple hostname and path combinations with a single waiting room, giving customers more flexibility and offering broader site coverage without interruptions to end-user flows...
Announcing General Availability for the Magic WAN Connector: the easiest way to jumpstart SASE transformation for your network
2023-10-03
We’re announcing the general availability of the Magic WAN Connector, which serves as the glue between your existing network hardware and Cloudflare’s networ...
Birthday Week recap: everything we announced — plus an AI-powered opportunity for startups
2023-10-02
Need a recap or refresher on all the big Birthday Week news this week? This recap has you covered...
Post-quantum cryptography goes GA
2023-09-29
Cloudflare announces Post-Quantum Cryptography as a Generally Available system...
Encrypted Client Hello - the last puzzle piece to privacy
2023-09-29
We're excited to announce a contribution to improving privacy for everyone on the Internet. Encrypted Client Hello, a new standard that prevents networks from snooping on which websites a user is visiting, is now available on all Cloudflare plans. ...
