MORE POSTS
October 12, 2021 12:59 PM
Dynamic Process Isolation: Research by Cloudflare and TU Graz
Cloudflare worked with TU Graz to study the impact of Spectre on Cloudflare Workers and to develop new defenses against it. Today we're publishing a paper about our research....
October 12, 2021 12:59 PM
Handshake Encryption: Endgame (an ECH update)
In this post, we’ll dig into ECH details and describe what this protocol does to move the needle to help build a better Internet....
October 12, 2021 12:59 PM
Privacy Pass v3: the new privacy bits
A new version of Privacy Pass for reducing the number of CAPTCHAs....
October 08, 2021 10:29 AM
Helping Apache Servers stay safe from zero-day path traversal attacks (CVE-2021-41773)
On September 29th 2021, the Apache Security team was alerted of a path traversal vulnerability being actively exploited (zero-day) against Apache HTTP Server version 2.4.49. Customers running the affected Apache version, should update to 2.5.51 as soon as possible....
October 01, 2021 12:05 AM
May I ask who’s calling, please? A recent rise in VoIP DDoS attacks
Over the past month, multiple Voice over Internet Protocol (VoIP) providers have been targeted by Distributed Denial of Service (DDoS) attacks from entities claiming to be REvil. ...
September 14, 2021 12:58 PM
Data at Cloudflare just got a lot faster: Announcing Live-updating Analytics and Instant Logs
Today, we’re excited to introduce Live-updating Analytics and Instant Logs. For Pro, Business, and Enterprise customers, our analytics dashboards now update in real time. In addition to this, Enterprise customers can now view their HTTP request logs instantly in the Cloudflare da...
September 08, 2021 9:18 AM
How Cloudflare helped mitigate the Atlassian Confluence OGNL vulnerability before the PoC was released
On August 25, 2021, Atlassian released a security advisory affecting their Confluence application. The Cloudflare WAF soon after started mitigating an increase in malicious traffic to vulnerable endpoints ensuring customers remained protected....
August 23, 2021 1:08 PM
Making Magic Transit health checks faster and more responsive
Magic Transit advertises our customer’s IP prefixes directly from our edge network, applying DDoS mitigation and firewall policies to all traffic destined for the customer’s network. ...
August 20, 2021 1:34 PM
Data protection controls with Cloudflare Browser Isolation
Starting today, your team can use Cloudflare’s Browser Isolation service to protect sensitive data inside the web browser. Administrators can define Zero Trust policies to control who can copy, paste, and print data in any web based application....
August 20, 2021 1:00 PM
Announcing Tenant Control in Cloudflare Gateway
Today, we’re excited to announce Tenant Control in Cloudflare Gateway, a new feature that helps keep our work at work....
August 19, 2021 12:59 PM
Building a Pet Cam using a Raspberry Pi, Cloudflare Tunnels and Teams
This was a perfect weekend project: I would set up my own pet cam, connect it to the Internet, and make it available for me to check from anywhere in the world....
August 18, 2021 1:01 PM
Zero Trust controls for your SaaS applications
With Access in front of your SaaS applications, you can build Zero Trust rules that determine who can reach your SaaS applications in the same place where your rules for self-hosted applications and network access live....
August 18, 2021 12:59 PM
Capturing Purpose Justification in Cloudflare Access
Starting today, Cloudflare for Teams administrators can prompt users to enter a justification for accessing an application prior to login. ...
August 17, 2021 12:59 PM
6 New Ways to Validate Device Posture
Cloudflare for Teams adds additional posture capabilities to better protect Access backed applications...