Stop attacks before they are known: making the Cloudflare WAF smarter
December 09, 2022 2:00 PM
Today we are making the WAF smarter by increasing availability of our new machine learning powered enhancement, the WAF Attack Score!...
December 09, 2022 2:00 PM
Today we are making the WAF smarter by increasing availability of our new machine learning powered enhancement, the WAF Attack Score!...
September 27, 2022 2:15 PM
Forester has recognised Cloudflare as a Leader in The Forrester Wave™: Web Application Firewalls, Q3 2022 report. The report evaluated 12 Web Application Firewall (WAF) providers on 24 criteria across current offering, strategy and market presence....
September 19, 2022 1:30 PM
Do you manage more than a single domain? If the answer is yes, now you can manage a single WAF configuration for all your enterprise domains...
September 06, 2022 4:15 PM
Gartner has recognised Cloudflare as a Leader in the 2022 "Gartner® Magic Quadrant™ for Web Application and API Protection (WAAP)" report that evaluated 11 vendors for their ‘ability to execute’ and ‘completeness of vision’...
September 05, 2022 1:00 PM
Data Generation and Augmentation methods to train an effective machine learning WAF...
July 07, 2022 12:57 PM
Cloudflare is expanding our WAF’s threat intelligence capabilities by adding four new managed IP lists that can be used as part of any custom firewall rule...
June 05, 2022 8:54 PM
On 2022-06-02 at 20:00 UTC Atlassian released a Security Advisory relating to a remote code execution (RCE) vulnerability affecting Confluence Server and Confluence Data Center products. This post covers our current analysis of this vulnerability...
April 01, 2022 1:31 PM
We decided we’re going to stop using CAPTCHAs. Before we talk about how we did it, and how you can help, let's first start with a simple question. Why in the world is CAPTCHA still used anyway?...
March 31, 2022 3:13 PM
Cloudflare Managed Ruleset updates for the recent vulnerabilities affecting the Java Spring framework and related software components...
March 15, 2022 12:59 PM
We are excited to provide our new Cloudflare Web Application Firewall, with a Free Managed Ruleset to all Cloudflare users...
March 15, 2022 12:59 PM
Today we are excited to complement managed rulesets (such as OWASP and Cloudflare Managed) with a new tool aimed at identifying bypasses and malicious payloads without human involvement, and before they are exploited...
March 15, 2022 12:59 PM
The security landscape is moving fast. We invited users to help us shape a new WAF experience that enables us to evolve WAF to meet their demands and use cases...
December 14, 2021 5:48 PM
In this blog post we will cover WAF evasion patterns and exfiltration attempts seen in the wild, trend data on attempted exploitation, and information on exploitation that we saw prior to the public disclosure of CVE-2021-44228....
December 10, 2021 9:24 PM
The vulnerability disclosed yesterday in the Java-based logging package, log4j, allows attackers to execute code on a remote server. We’ve updated Cloudflare’s WAF to defend your infrastructure against this 0-day attack. ...