Account Takeover Protection and WAF mitigations to help stop Global Brute Force Campaigns
July 01, 2021 6:53PM
Today, we are making our Account Takeover Protection capabilities available to all paid plans at no additional charge....
Protecting against recently disclosed Microsoft Exchange Server vulnerabilities: CVE-2021-26855, CVE-2021-26857, CVE-2021-26858, and CVE-2021-27065
March 07, 2021 12:47AM
Vulnerabilities WAF WAF RulesCloudflare has deployed managed rules protecting customers against a series of remotely exploitable vulnerabilities that were recently found in Microsoft Exchange Server....
Using HPKE to Encrypt Request Payloads
February 19, 2021 12:00PM
WAF WAF Rules Security Firewall CryptoAllowing users to securely log parts of the request that match firewall rules while making it impossible for anyone else to decrypt....
Encrypting your WAF Payloads with Hybrid Public Key Encryption (HPKE)
December 11, 2020 3:00PM
Privacy Week WAF WAF Rules Security FirewallAllowing logging for payloads that trigger the Web Application Firewall has always led to end-user privacy concerns. We built encrypted matched payload logging to solve this!...
CVE-2020-5902: Helping to protect against the F5 TMUI RCE vulnerability
July 07, 2020 6:04PM
WAF Rules Security VulnerabilitiesCloudflare has deployed a new managed rule protecting customers against a remote code execution vulnerability that has been found in F5 BIG-IP’s web-based Traffic Management User Interface (TMUI)....
More Posts