Welcome to Wildebeest: the Fediverse on Cloudflare
2023-02-08
Today we're announcing Wildebeest, an open-source, easy-to-deploy ActivityPub and Mastodon-compatible server built entirely on top of Cloudflare's Supercloud....
How Cloudflare erroneously throttled a customer’s web traffic
2023-02-07
Today’s post is a little different. It’s about a single customer’s website not working correctly because of incorrect action taken by Cloudflare....
Get notified about the most relevant events with Advanced HTTP Alerts
2023-02-03
Today we’re adding more flexibility to HTTP alerting, enabling customers to customize the types of activity they’re alerted on and how those alerts are organized....
Manage and control the use of dedicated egress IPs with Cloudflare Zero Trust
2023-02-03
Administrators can now use Gateway traffic egress policies to determine which egress IPs are used when....
Cloudflare's handling of a bug in interpreting IPv4-mapped IPv6 addresses
2023-02-02
Recently, a vulnerability was reported to our bug bounty about a bug in the way some of our code interprets IPv4 addresses mapped into IPv6 addresses. Read about how Cloudflare addressed this vulnerability and what will prevent similar exploits in the future....
Uptick in healthcare organizations experiencing targeted DDoS attacks
2023-02-02
Over the past few days, Cloudflare, as well as other sources, have observed healthcare organizations targeted by a pro-Russian hacktivist group claiming to be Killnet. ...
CVE-2022-47929: traffic control noqueue no problem?
2023-01-31
In the Linux kernel before 6.1.6, a NULL pointer dereference bug in the traffic control subsystem allows an unprivileged user to trigger a denial of service (system crash) via a crafted traffic control configuration that is set up with "tc qdisc" and "tc class" commands....
Towards a global framework for cross-border data flows and privacy protection
2023-01-27
In our third and final blog post leading up to Data Privacy Day, we drill down into the challenges for cross-border data flows, in particular personal data transfers from the EU to the US....
Inside Geo Key Manager v2: re-imagining access control for distributed systems
2023-01-27
Using the story of Geo Key Manager v2 as an example, let’s re-imagine access control for distributed systems using a variant of public-key cryptography, called attribute-based encryption....
Cyberattacks on Holocaust educational websites increased in 2022
2023-01-27
Today, 78 years after the liberation of the Auschwitz death camp, we mark the International Holocaust Remembrance Day. With Cloudflare’s Project Galileo, we protect Holocaust educational websites and at risk public interest groups. Read more to see how attacks on these groups increased in 2022....
Navigating the changing data localization landscape with Cloudflare’s Data Localization Suite
2023-01-26
We continue to expand and improve our data localization suite to help support our customers who have to comply with data localization requirements...
Investing in security to protect data privacy
2023-01-25
With Data Privacy Day just a few days away, we think it’s important to focus on all the ways security measures and privacy-enhancing technologies help keep personal data private and why security...
Armed to Boot: an enhancement to Arm's Secure Boot chain
2023-01-25
Enhancing the Arm Secure Boot chain to improve platform security on modern systems....
Cloudflare incident on January 24, 2023
2023-01-25
Several Cloudflare services became unavailable for 121 minutes on January 24th, 2023 due to an error releasing code that manages service tokens. The incident degraded a wide range of Cloudflare products...
Intelligent, automatic restarts for unhealthy Kafka consumers
2023-01-24
At Cloudflare, we take steps to ensure we are resilient against failure at all levels of our infrastructure. This includes Kafka, which we use for critical workflows such as sending time-sensitive emails and alerts....
Internet disruptions overview for Q4 2022
2023-01-20
In this post, we review selected Internet disruptions observed by Cloudflare during the fourth quarter of 2022, supported by traffic graphs from Cloudflare Radar and other internal Cloudflare tools, and grouped by associated cause or common geography....
Introducing Waiting Room Bypass Rules
2023-01-19
Waiting Room now offers customers more fine-tuned control over what traffic a waiting room covers. Queue only the traffic you want to with Bypass Waiting Room Rules, now available to all Enterprise customers with an Advanced Purchase of Waiting Room....
Three new winners of Project Jengo, and more defeats for the patent troll
2023-01-17
Announcing three new winners of Project Jengo, and a major case update in our ongoing fight against the patent troll Sable Networks....
A debugging story: corrupt packets in AF_XDP; a kernel bug or user error?
2023-01-16
A race condition in the virtual ethernet driver of the Linux kernel led to occasional packet content corruptions, which resulted in unwanted packet drops by one of our DDoS mitigation systems. This blogpost describes the thought process and technique we used to debug this complex issue....
Cloud CNI privately connects your clouds to Cloudflare
2023-01-13
Customers using Google Cloud Platform, Azure, Oracle Cloud, IBM Cloud, and Amazon Web Services can now open direct connections from their private cloud instances into Cloudflare...
