The Cloudflare Blog

Looking Forward: Some Predictions for 2022

2021-12-31

As we approach the end of the year, let's look ahead at some trends and predictions for 2022...

John Engates

Cloudflare Radar's 2021 Year In Review

2021-12-23

Year in Review Radar Internet Traffic Trends

In 2021, we continued to live with the effects of the COVID pandemic and Internet traffic was also impacted (differently than in 2020) from it....

In 2021, the Internet went for TikTok, space and beyond

2021-12-20

Radar Year in Review Trends

Join us in our Year in Review 2021 focused on the most popular domains-websites...

Supporting Remix with full stack Cloudflare Pages

2021-12-17

Cloudflare Pages Full Stack Cloudflare Workers 1.1.1.1 (DE)Serverless Developers Developer Platform

Cloudflare Pages now natively supports full stack Remix applications...

Greg Brimble

From 0 to 20 billion - How We Built Crawler Hints

2021-12-16

Crawler Hints Product News Speed & Reliability SEO

Cloudflare Is reducing the environmental impact of web searches with 20+ billions crawler hints delivered so far. This blog describes the technical solution of how we built the Crawler Hints system that makes all this possible. ...

Protection against CVE-2021-45046, the additional Log4j RCE vulnerability

2021-12-15

Log4J Log4Shell WAF Rules Security Vulnerabilities

This vulnerability is actively being exploited and anyone using Log4J should update to version 2.16.0 as soon as possible. Latest version is available on the Log4J download page....

An exposed apt signing key and how to improve apt security

2021-12-15

Security Cloudflare Zero Trust WARP Zero Trust

Recently, we received a bug bounty report regarding the GPG signing key used for pkg.cloudflareclient.com, the Linux package repository for our Cloudflare WARP products....

Exploitation of Log4j CVE-2021-44228 before public disclosure and evolution of evasion and exfiltration

2021-12-14

Log4J Log4Shell Vulnerabilities WAF Security

This article covers WAF evasion patterns and exfiltration attempts, trend data on attempted exploitation, and information on exploitation that we saw prior to the public disclosure of CVE-2021-44228....

Sanitizing Cloudflare Logs to protect customers from the Log4j vulnerability

2021-12-14

Logs Vulnerabilities Zero Day Threats Security Log4J Log4Shell

Many Cloudflare customers consume their logs using software that uses Log4j, so we are mitigating any exploit attempts via Cloudflare Logs....

Maximum redirects, minimum effort: Announcing Bulk Redirects

2021-12-13

Product News Cloudflare Workers Page Rules API Developers Developer Platform

Bulk Redirects is a new product that allows an administrator to upload and enable hundreds of thousands of URL redirects within minutes, without having to write a single line of code....

Sam Marsh

How Cloudflare Is Solving Network Interconnection for CIOs

2021-12-11

CIO Week Network Interconnect

Instant network provisioning in over 1000 new locations coming over the next year makes it faster and easier than ever to interconnect with Cloudflare....

Version and Stage Configuration Changes with HTTP Applications in Beta

2021-12-11

CIO Week

Today, we are announcing a closed beta of HTTP Applications: a new way to safely test and deploy changes to your HTTP traffic...

Garrett Galow

What’s new with Notifications?

2021-12-11

CIO Week Notifications Email

We know that notifications are incredibly important to our customers. Cloudflare sits in between your Internet property and the rest of the world. When something goes wrong, you want to know right away because it could have a huge impact on your end users....

Natasha Wissmann

Updates to Cloudflare Security and Privacy Certifications and Reports

2021-12-11

CIO Week Certification Security Privacy

Customer confidence in our ability to handle their sensitive information in an ever-changing regulatory landscape has to be as solid as our offerings, so we have expanded the scope of our previously-existing compliance validations; not only that, we’ve also managed to obtain a couple of new ones....

Ling Wu

All the Platform Improvements We’ve Made in 2021 to Make CIOs Lives Easier

2021-12-11

CIO Week

While over time best practices and technologies change, we aim to ensure our platform meets the security needs and depth of control that our customers require. In that spirit, we have been busy over the past year delivering important updates to many of our platform services....

How Cloudflare security responded to Log4j 2 vulnerability

2021-12-10

Vulnerabilities Security Log4J Log4Shell

Yesterday, December 9, 2021, when a serious vulnerability in the popular Java-based logging package log4j was publicly disclosed, our security teams jumped into action to help respond to the first question and answer the second question. This post explores the second....

Secure how your servers connect to the Internet today

2021-12-10

Cloudflare Zero Trust Cloudflare One Zero Trust Cloudflare Gateway Zero Day Threats Security WAF Log4J

The vulnerability disclosed yesterday in the Java-based logging package, log4j, allows attackers to execute code on a remote server. We’ve updated Cloudflare’s WAF to defend your infrastructure against this 0-day attack. ...

Sam Rhea

Actual CVE-2021-44228 payloads captured in the wild

2021-12-10

Vulnerabilities Security Page Rules Log4J Log4Shell

I wrote earlier about how to mitigate CVE-2021-44228 in Log4j, how the vulnerability came about and Cloudflare’s mitigations for our customers. As I write we are rolling out protection for our FREE customers as well because of the vulnerability’s severity....

John Graham-Cumming

Inside the Log4j2 vulnerability (CVE-2021-44228)

2021-12-10

Vulnerabilities Zero Day Threats Security WAF Rules Log4J Log4Shell

In this post we explain the history of this vulnerability, how it was introduced, how Cloudflare is protecting our clients. We will update later with actual attempted exploitation we are seeing blocked by our firewall service....

John Graham-Cumming

Cloudflare One helps optimize user connectivity to Microsoft 365

2021-12-10

CIO Week Cloudflare One Speed & Reliability Microsoft

Cloudflare One partners with Microsoft to optimize user connectivity to Microsoft 365...

← Newer Posts

Older Posts →