Cloudflare Blog: Security

September 28, 2022 2:01PM

Announcing Turnstile, a user-friendly, privacy-preserving alternative to CAPTCHA

Birthday Week Product News Turnstile CAPTCHA Security Bots Privacy Free

Any website can use a simple API to replace CAPTCHAs with our invisible alternative, whether they’re on the Cloudflare network or not....

September 28, 2022 2:00PM

Private by design: building privacy-preserving products with Cloudflare's Privacy Edge

Birthday Week Privacy Security

Introducing Privacy Edge – a collection of products that make it easier for site owners and developers to protect their users’ privacy by default....

September 27, 2022 3:15PM

Cloudflare named a Leader in WAF by Forrester

WAF Security API Security DDoS Bot Management Page Shield

Forester has recognised Cloudflare as a Leader in The Forrester Wave™: Web Application Firewalls, Q3 2022 report. The report evaluated 12 Web Application Firewall (WAF) providers on 24 criteria across current offering, strategy and market presence....

Michael Tremante

September 27, 2022 2:00PM

Where to? Introducing Origin Rules

Birthday Week Origin Rules Product News Security

Origin Rules is a dedicated product for ‘where does this traffic go where it leaves Cloudflare.’ Customers are able to match on an HTTP request using filters and override the host, port, SNI, and the origin a request resolves to....

September 26, 2022 2:15PM

Securing the Internet of Things

Birthday Week Zero Trust SIM IoT Product News Security Connectivity

We’ve been defending customers from Internet of Things botnets for years now, and it’s time to turn the tides: we’re bringing the same security behind our Zero Trust platform to IoT...

Matt Silverlock

September 23, 2022 11:47AM

How to enable Private Access Tokens in iOS 16 and stop seeing CAPTCHAs

Nobody likes CAPTCHAs. Now, with iOS 16 on iPhones, a small enabled toggle can make them disappear while improving privacy on your device. Here’s how to check if it’s “on” and try it out...

By

João Tomé

How to , CAPTCHA , Security , Partners

September 22, 2022 2:00PM

API Endpoint Management and Metrics are now GA

API Shield customers can save, update, and monitor the performance of API endpoints...

By

Jin-Hee Lee

GA Week , General Availability , API , API Gateway , API Security

September 20, 2022 2:30PM

Cloudflare Area 1 - how the best email security keeps getting better

Cloudflare started using Area 1 in 2020 and proceeded with acquiring the company in 2022. We were most impressed how phishing, responsible for 90+% of cyberattacks, basically became a non-issue overnight when we deployed Area 1. But our vision is much bigger than preventing phishing attacks...

By

João Sousa Botto

GA Week , General Availability , Email , Security , Email Security

September 19, 2022 3:01PM

Cloudforce One is now generally available: empower your security team with threat data, tooling, and access to industry experts

Cloudflare’s threat operations and research team, Cloudforce One, is now open for business and has begun conducting threat briefings. Join our webinar on “YackingYeti: How a Russian threat group targets Ukraine—and the world”, scheduled for October 12, to learn more...

By

Patrick R. Donahue
, Blake Darché

GA Week , General Availability , Cloudforce One , Threat Intelligence , Security

September 06, 2022 5:15PM

Cloudflare named a Leader by Gartner

Gartner has recognised Cloudflare as a Leader in the 2022 "Gartner® Magic Quadrant™ for Web Application and API Protection (WAAP)" report that evaluated 11 vendors for their ‘ability to execute’ and ‘completeness of vision’...

By

Michael Tremante

WAF , Security , API Security , DDoS , Bot Management

August 30, 2022 3:00PM

Introducing thresholds in Security Event Alerting: a z-score love story

Today we are excited to announce thresholds for our Security Event Alerts: a new and improved way of detecting anomalous spikes of security events on your Internet properties. By introducing a threshold, we are able to make alerts more accurate and only notify you when it truly matters...

By

Kristina Galicova

Notifications , Alerts , WAF , Product News , Security

August 11, 2022 2:00PM

2022 attacks! An August reading list to go “Shields Up”

In 2022, cybersecurity, more than ever, is a must-have for those who don’t want to take chances on getting caught in a cyberattack with difficult to deal with consequences. Here’s a reading list what you need to know about attacks that is also a guide on how to be protected...

By

João Tomé

Reading List , Security , Attacks , DDoS , Ransom Attack

August 09, 2022 4:56PM

The mechanics of a sophisticated phishing scam and how we stopped it

Yesterday, August 8, 2022, Twilio shared that they’d been compromised by a targeted phishing attack. Around the same time as Twilio was attacked, we saw an attack with very similar characteristics also targeting Cloudflare’s employees...

By

Security , Post Mortem , Phishing , Cloudflare Gateway , Cloudflare Access

August 06, 2022 5:15PM

1.1.1.1 + WARP: More features, still private

We’re announcing two major improvements to our 1.1.1.1 + WARP apps...

By

Mari Galicer
, Matt Silverlock

WARP , Privacy , 1.1.1.1 , Security