The (hardware) key to making phishing defense seamless with Cloudflare Zero Trust and Yubico
September 29, 2022
Announcing a new collaboration with Yubico, to remove any barriers for organizations of any size to deploying hardware security keys....
Now all customers can share access to their Cloudflare account with Role Based Access Controls
September 29, 2022
Role Based Access Controls are now available for every plan!...
Back in 2017 we gave you Unmetered DDoS Mitigation, here's a birthday gift: Unmetered Rate Limiting for Self Serve customers
September 29, 2022
Starting today, Free, Pro and Business plans include Rate Limiting rules without additional charges....
How Cloudflare implemented hardware keys with FIDO2 and Zero Trust to prevent phishing
September 29, 2022
Adopting a phishing resistant second factor, like a YubiKey with FIDO2, is the number one way to prevent phishing attacks. Cloudflare has used phishing resistant second factors only since February 2021, and these were the steps we took to accomplish that....
Announcing Turnstile, a user-friendly, privacy-preserving alternative to CAPTCHA
September 28, 2022
Any website can use a simple API to replace CAPTCHAs with our invisible alternative, whether they’re on the Cloudflare network or not....
MORE POSTS
September 28, 2022
Private by design: building privacy-preserving products with Cloudflare's Privacy Edge
Introducing Privacy Edge – a collection of products that make it easier for site owners and developers to protect their users’ privacy by default. ...
- By
September 27, 2022
Cloudflare named a Leader in WAF by Forrester
Forester has recognised Cloudflare as a Leader in The Forrester Wave™: Web Application Firewalls, Q3 2022 report. The report evaluated 12 Web Application Firewall (WAF) providers on 24 criteria across current offering, strategy and market presence....
- By
September 27, 2022
Where to? Introducing Origin Rules
Origin Rules is a dedicated product for ‘where does this traffic go where it leaves Cloudflare.’ Customers are able to match on an HTTP request using filters and override the host, port, SNI, and the origin a request resolves to....
- By
September 26, 2022
Securing the Internet of Things
We’ve been defending customers from Internet of Things botnets for years now, and it’s time to turn the tides: we’re bringing the same security behind our Zero Trust platform to IoT...
- By
September 23, 2022
How to enable Private Access Tokens in iOS 16 and stop seeing CAPTCHAs
Nobody likes CAPTCHAs. Now, with iOS 16 on iPhones, a small enabled toggle can make them disappear while improving privacy on your device. Here’s how to check if it’s “on” and try it out...
- By
September 22, 2022
API Endpoint Management and Metrics are now GA
API Shield customers can save, update, and monitor the performance of API endpoints...
- By
September 20, 2022
Cloudflare Area 1 - how the best email security keeps getting better
Cloudflare started using Area 1 in 2020 and proceeded with acquiring the company in 2022. We were most impressed how phishing, responsible for 90+% of cyberattacks, basically became a non-issue overnight when we deployed Area 1. But our vision is much bigger than preventing phish...
- By
September 19, 2022
Cloudforce One is now generally available: empower your security team with threat data, tooling, and access to industry experts
Cloudflare’s threat operations and research team, Cloudforce One, is now open for business and has begun conducting threat briefings. Join our webinar on “YackingYeti: How a Russian threat group targets Ukraine—and the world”, scheduled for October 12, to learn more...
- By
September 06, 2022
Cloudflare named a Leader by Gartner
Gartner has recognised Cloudflare as a Leader in the 2022 "Gartner® Magic Quadrant™ for Web Application and API Protection (WAAP)" report that evaluated 11 vendors for their ‘ability to execute’ and ‘completeness of vision’...
- By
August 30, 2022
Introducing thresholds in Security Event Alerting: a z-score love story
Today we are excited to announce thresholds for our Security Event Alerts: a new and improved way of detecting anomalous spikes of security events on your Internet properties. By introducing a threshold, we are able to make alerts more accurate and only notify you when it truly m...
- By
August 11, 2022
2022 attacks! An August reading list to go “Shields Up”
In 2022, cybersecurity, more than ever, is a must-have for those who don’t want to take chances on getting caught in a cyberattack with difficult to deal with consequences. Here’s a reading list what you need to know about attacks that is also a guide on how to be protected...
- By
August 09, 2022
The mechanics of a sophisticated phishing scam and how we stopped it
Yesterday, August 8, 2022, Twilio shared that they’d been compromised by a targeted phishing attack. Around the same time as Twilio was attacked, we saw an attack with very similar characteristics also targeting Cloudflare’s employees...
- By
August 06, 2022
1.1.1.1 + WARP: More features, still private
We’re announcing two major improvements to our 1.1.1.1 + WARP apps...
- By
July 05, 2022
Making Page Shield malicious code alerts more actionable
In this post we go over improvements to script status, metadata and categorization....
- By
June 29, 2022
Live-patching security vulnerabilities inside the Linux kernel with eBPF Linux Security Module
Learn how to patch Linux security vulnerabilities without rebooting the hardware and how to tighten the security of your Linux operating system with eBPF Linux Security Module...
- By