Attacks - The Cloudflare Blog (Page 2)

March 20, 2019 1:00PM

Preventing Request Loops Using CDN-Loop

Request Loops Attacks WAF Security Reliability

HTTP requests typically originate with a client, and end at a web server that processes the request and returns some response. Such requests may pass through multiple proxies before they arrive at the requested resource....

Alex Davidson

February 20, 2019 3:14PM

Stop the Bots: Practical Lessons in Machine Learning

Attacks Security

Bot-powered credential stuffing is a scourge on the modern Internet. These attacks attempt to log into and take over a user’s account by assaulting password forms with a barrage of dictionary words and previously stolen account credentials....

Nikon Rasumov

November 28, 2018 7:59PM

L4Drop: XDP DDoS Mitigations

DDoS Attacks Reliability Security

Efficient packet dropping is a key part of Cloudflare’s distributed denial of service (DDoS) attack mitigations. In this post, we introduce a new tool in our packet dropping arsenal: L4Drop....

Arthur Fabre

November 12, 2018 11:27AM

The rise of multivector DDoS attacks

Security DDoS Attacks Reliability

It's been a while since we last wrote about Layer 3/4 DDoS attacks on this blog. This is a good news - we've been quietly handling the daily onslaught of DDoS attacks. Since our last write-up, a handful of interesting L3/4 attacks have happened. Let's review them....

Marek Majkowski

September 08, 2018 4:00PM

Website Security Myths

Security Attacks Malware

Some conversations are easy; some are difficult. Some are harmonious and some are laborious. But when it comes to website security, the conversation is confusing. Every organisation agrees, in theory, that their websites need to be secure....

Naveen Singh