How Cloudflare is using automation to tackle phishing head on
2025-03-17
How Cloudflare is using threat intelligence and our Developer Platform products to automate phishing abuse reports....
Continue reading »
Applying Human Rights Frameworks to our approach to abuse
2022-12-15
Cloudflare launched its first Human Rights Policy in 2021, formally stating our commitment to respect human rights under the UN Guiding Principles on Business and Human Rights (UNGPs)...
Blocking Kiwifarms
2022-09-03
We have blocked Kiwifarms. Visitors to any of the Kiwifarms sites that use any of Cloudflare's services will see a Cloudflare block page and a link to this post. ...
Cloudflare's abuse policies & approach
2022-08-31
Cloudflare launched nearly twelve years ago. Over that time, our set of services has become much more complicated. With that complexity we have developed policies around how we handle abuse of different features Cloudflare provides...
Announcing the CSAM Scanning Tool, Free for All Cloudflare Customers
2019-12-18
Two weeks ago we wrote about Cloudflare's approach to dealing with child sexual abuse material (CSAM). We first began working with the National Center for Missing and Exploited Children (NCMEC), the US-based organization that acts as a clearinghouse for removing this abhorrent content...
MORE POSTS
February 28, 2019 1:00 PM
Digital Evidence Across Borders and Engagement with Non-U.S. Authorities
Since we first started reporting in 2013, our transparency report has focused on requests from U.S. law enforcement. Previous versions of the report noted that, as a U.S. company, we ask non-U.S. law enforcement agencies to obtain formal U.S. legal process before providing custom...
- By
February 27, 2019 1:00 PM
Out of the Clouds and into the weeds: Cloudflare’s approach to abuse in new products
In a blogpost yesterday, we addressed the principles we rely upon when faced with numerous and various requests to address the content of websites that use our services. ...
- By
February 13, 2019 10:44 PM
The Curious Case of the Garden State Imposter
Dealing with abuse complaints isn’t easy, for any Internet company. The variety of subject matters at issue, the various legal and regulatory requirements, and the uncertain intentions of complaining parties combine to create a ridiculously complex situation....
- By
December 12, 2017 2:00 PM
Why Some Phishing Emails Are Mysteriously Disappearing
Phishing is the absolute worst. Unfortunately, sometimes phishing campaigns use Cloudflare for the very convenient, free DNS. ...
- By
May 07, 2017 7:35 PM
Anonymity and Abuse Reports
Last Thursday, ProPublica published an article critiquing our handling of some abuse reports that we receive. Feedback from the article caused us to reevaluate how we handle abuse reports. As a result, we've decided to update our abuse reporting system....
- By
April 24, 2015 12:17 AM
Of Phishing Attacks and WordPress 0days
Proxying around 5% of the Internet’s requests gives us an interesting vantage point from which to observe malicious behavior. However, it also makes us a target. ...
- By
August 20, 2012 8:39 PM
Updating Policies
Back in late 2009, CloudFlare's service began to take shape and our website first went online. While in the early days I had contributed to CloudFlare's early code, we quickly hired engineers to join Lee's team who were far smarter than I. ...
- By
July 13, 2012 9:47 PM
Thoughts on Abuse
One of the behind the scenes topics we think about a lot at CloudFlare is how to handle abuse of our network. I realized that we hadn't exposed our thoughts on this clearly enough. In the next few days, we'll be making some minor updates to our Terms of Service....
- By
July 01, 2012 7:28 PM
Protecting CloudFlare sites from phishing
As the internet has grown, phishing attacks have continued to be a problem. While better awareness and focus on security has helped reduce their number, the RSA and other services tracking phishing still show that somewhere between 20-30,000 phishing attacks generally occur every...
- By