Developer Challenges04/12/2021Developer WeekCloudflare WorkersDevelopersWranglerServerlessDeveloper PlatformDeveloper week is here! Throughout the week we are running a series of Developer Challenges that give you the perfect excuse to play with our new features. See how many of the challenges you can get through....Gretchen Scott
Cloudflare Pages is now Generally Available04/12/2021Developer WeekCloudflare PagesJAMstackCloudflare WorkersDevelopersProduct NewsDeveloper PlatformToday, we’re excited to announce that Cloudflare Pages is now Generally Available and ready for your production needs....Rita Kozlov
Live stream to multiple platforms with Stream Connect04/12/2021Developer WeekRestreamingDevelopersProduct NewsCloudflare StreamWe are announcing Stream Connect, a service that enables creators and creator platforms to push RTMPS feeds to the Cloudflare edge and have it restreamed to your audience on popular platforms including Twitch, Facebook, and YouTube....Zaid Farooqui
Developers, Developers, Developers: Welcome to Developer Week 202104/11/2021Developer WeekDevelopersProduct NewsThis week, like we have done in previous Innovation Weeks (such as Security Week or Privacy Week), we will be making many (about 20) announcements of products and features to make developers’ lives easier....John Graham-Cumming
Per Origin Host Header Override04/09/2021Product NewsLoad BalancingLoad Balancing as a concept is pretty straightforward. Take an existing infrastructure and route requests to the available origin servers so no single server is overwhelmed. Add in some health monitoring to ensure each server has a heartbeat/pulse so proactive decisions can be made. ...Brian BatraskiRoopa Chandrashekar
Dynamic URL Rewriting at the edge with Cloudflare04/08/2021Transform RulesProduct NewsSecurityToday we are announcing the immediate availability of Transform Rules for all Cloudflare plans. Transform Rules provide Cloudflare administrators with the ability to create URL rewrite rules. ...Sam Marsh
Jonathon Dixon: Why I joined Cloudflare04/08/2021Life at CloudflareAPJCSingaporeAsiaCareersI’m excited to announce that on March 1st, I joined Cloudflare as Vice President and GM, Asia Pacific (including Japan and Greater China) to help build and expand Cloudflare’s growing customer and partner base and presence in the region....Jonathon Dixon
Hackers Spill the Wine: Lockdown Led to Rise in Wine Domains and Wine Scammers04/07/2021Email SecurityCloud Email SecuritySecurityGuest PostArea 1 Security and Recorded Future researchers report a significant increase in the number of new wine-themed phishing domains registered starting in April 2020, and continuing through at least March 2021....Allan Liska (Guest Blogger)
Area 1 Security Announces the Most Spoofed Brand of 202004/02/2021Email SecurityCloud Email SecurityCloudflare Zero TrustSecuritySpoofingThe COVID-19 pandemic’s influence on phishing and cyberattack lures is clear. Area 1 Security identified over 2 million phishing spoofs that exploited the World Health Organization between May 2020 and February 2021....Shalabh Mohan
The Teams Dashboard: A New Place to Call Home04/02/2021Cloudflare Zero TrustProduct DesignTeams DashboardZero TrustSecurityProduct NewsUser ResearchToday, we’re announcing a new feature within the Teams Dash. We called it “Home”. We created Home with a simple goal in mind: design an adaptive and informative landing page where users can see a round-up of their environment....Abe CarrylBethany SonefeldAlice Bracchi
How to execute an object file: Part 204/02/2021LinuxProgrammingDeep DiveContinue learning how to import and execute code from an object file. This time we will investigate ELF relocations....Ignat Korchagin
Annual March Hackness 2021: The Not-So-Sweet 16 —The Pandemic’s Phishing Influence03/31/2021Email SecurityCloud Email SecurityCloudflare Zero TrustSecuritySpoofingThe COVID-19 pandemic influenced which brands attackers exploited for phishing campaigns in 2021. For example, the World Health Organization and DocuSign made Area 1 Security’s 2021 March Hackness “Not-so-Sweet 16.”...Shalabh Mohan
Durable Objects, now in Open Beta03/31/2021Product NewsDurable ObjectsBetaServerlessCloudflare WorkersWranglerAs of today, Durable Objects beta access is available to anyone with a Cloudflare Workers® subscription....Greg McKeon
Cloudflare’s WAF is recognized as customers’ choice for 202103/30/2021SecurityWAFGartnerCloudflare has been recognised as Gartner Peer Insights Customers’ Choice for WAF vendor in 2021 by Gartner....Michael Tremante
Build Zero Trust rules with managed devices03/30/2021Security WeekCloudflare AccessZero TrustTeams DashboardCloudflare Zero TrustSecurityStarting today, your team can use Cloudflare Access to build rules that only allow users to connect to applications from a device that your enterprise manages. ...Kenny Johnson
End User Security: Account Takeover Protections with Cloudflare03/30/2021Security WeekSecurityCloudflare AccessCloudflare GatewayProduct NewsEnd-user account security is always a top priority, but a hard problem to solve. In this post, we provide a summary of all the Cloudflare features that can help....Michael Tremante
Inside Cloudflare: Preventing Account Takeovers03/30/2021Security WeekCloudflare GatewayCloudflare AccessSecurityThroughout the day, Cloudflare has published blog posts on products created to secure our customers from credential stuffing bots, detect users with compromised credentials, and block users from proxy services. But what do we do inside Cloudflare to prevent account takeovers on our own applications?...Julie A. Sparks
A new Cloudflare Web Application Firewall03/29/2021Security WeekWAFFirewallProduct NewsToday we are announcing a new Cloudflare Web Application Firewall for all Cloudflare paid zone customers....Michael Tremante
Keyless SSL now supports FIPS 140-2 L3 hardware security module (HSM) offerings from all major cloud providers03/27/2021Security WeekKeyless SSLProduct NewsPrivate encryption keys stored in hardware security module offerings from all major cloud providers can now be used to secure HTTPS connections at Cloudflare’s global edge. ...Patrick R. DonahueDina Kozlov
Introducing: Advanced Certificate Manager03/27/2021Security WeekAdvanced Certificate ManagerProduct NewsSecurityToday, we are excited to announce that dedicated certs are getting an upgrade… and a new name… introducing Advanced Certificate Manager! Advanced Certificate Manager is a flexible and customizable way to manage your certificates on Cloudflare. ...Dina Kozlov
Heartbleed Revisited03/27/2021Security WeekTLSTLS key compromise is a risk for all web services. Taking lessons from Heartbleed, Cloudflare offers the latest features that make key compromise less of a risk....Nick Sullivan
Introducing Super Bot Fight Mode03/26/2021BotsBot Fight ModeBot ManagementSecurity WeekProduct NewsBeginning immediately, any Cloudflare user with a Pro or Business site can take new action against bots. We’ve added advanced features in the dashboard and some exciting updates to analytics. ...Ben Solomon
Announcing API Abuse Detection03/26/2021Security WeekSecurityAPIBotsMobileToday, we are announcing early access to API Abuse Detection. This technology will identify, secure, and protect API endpoints with unsupervised learning....Ben SolomonThomas Vissers
Mitigating Bot Attacks against Cloudflare03/26/2021Security WeekBot ManagementBotsAttacksThe word “bots” on the Internet is a fairly loaded one. My earliest ‘bot’ experience was on IRC, where bots were quite helpful in making sure your favorite channel didn’t get taken over by malicious users and allowed for fun games of trivia....Sergi Isasi
Page Shield: Protect User Data In-Browser03/25/2021Security WeekPage ShieldProduct NewsDevice SecuritySpeed & ReliabilityRemote Browser IsolationWe're excited to introduce Page Shield, a client-side security product customers can use to detect attacks in end-user browsers....Justin Zhou
Protecting Cloudflare Customers from BGP Insecurity with Route Leak Detection03/25/2021Security WeekBGPSecurityRPKIToday, we're excited to announce Route Leak Detection, a new network alerting feature that tells customers when a prefix they own that is onboarded to Cloudflare is being leaked....David Tuber
Announcing Cloudflare’s Data Loss Prevention platform03/24/2021Security WeekProduct NewsData Loss PreventionZero TrustSecure Web GatewayCloudflare AccessToday, we’re excited to announce that your team can use Cloudflare’s network to build Zero Trust controls over the data in your enterprise - wherever it lives and however it moves....Sam Rhea
Protecting your APIs from abuse and data exfiltration03/24/2021Security WeekAPI ShieldFirewallDLPAPI Shield is growing with new functionalities: Schema Validation generally available, Managed IP List, more controls to manage certificates, and Data Loss Prevention....Daniele Molteni
Using Cloudflare for Data Loss Prevention03/24/2021Security WeekCloudflare OneData Loss PreventionThe increased use of cloud-based SaaS providers to store and access sensitive data introduces a swath of security risks as management of these resources can be unwieldy. The risk of data loss can be managed by using Cloudflare Access, API Shield, and Browser Isolation....Misha Yalavarthy
Browser Isolation for teams of all sizes03/23/2021Product NewsZero Day ThreatsCloudflare OneSecurity WeekSecurityRemote Browser IsolationProtecting endpoints from browser-born zero-day attacks and malware with remote browser isolation is now easy for teams of any size....Tim Obezuk
Announcing antivirus in Cloudflare Gateway03/23/2021Cloudflare Zero TrustCloudflare GatewaySecurity WeekSecurityProduct NewsZero TrustWe’re announcing support for malware detection and prevention directly from the Cloudflare edge, giving Gateway users an additional line of defense against security threats....Malavika Balachandran TadeuszPete Zimmerman
New device security partnerships for Cloudflare One03/23/2021Zero TrustCloudflare Zero TrustDevice SecurityCloudflare AccessCloudflare OneSecurity WeekSecurityCloudflare launches new integrations with CrowdStrike, SentinelOne, and VMware Carbon Black. Cloudflare for Teams customers can now restrict access to their applications based on security signals from their devices....Simon SteinerKenny JohnsonKyle Krum
Anatomy of a Targeted Ransomware Attack03/23/2021DDoSRansom AttacksAttacksImagine your most critical systems suddenly stop operating. And then someone demands a ransom to get your systems working again. Or someone launches a DDoS against you and demands a ransom to make it stop. That’s the world of ransomware and ransom DDoS....James Espinosa
Annual March Hackness: The Opener — What a Difference a Year Makes in the World of Phishing Attacks03/22/2021Email SecurityCloud Email SecurityCloudflare Zero TrustSecuritySpoofingArea 1 has been doing our own Phishing brackets over the past five years. We took a hiatus in 2020 (as did the NCAA), so today, we proudly introduce the 5th Annual March Hackness: The Phishing Tournament....Shalabh Mohan