訂閱以接收新文章的通知:

2024 年 Security Week 總結

2024-03-11

閱讀時間:1 分鐘
本貼文還提供以下語言版本:EnglishFrançaisDeutsch日本語한국어Español简体中文
Security Week 2024 wrap up

未來 12 個月有可能重塑全球政治格局,2024 年將有 80 多個國家舉行選舉,而人工智慧等新技術將激發我們的想像力,並帶來新的安全挑戰。

在此背景下,CISO 的作用從未如此重要。Cloudflare 首席安全長 Grant Bourzikas 在 Security Week 開幕部落格中分享了他對安全產業當前面臨的最大挑戰的看法。

過去一週,我們宣佈了許多新產品和功能,以應對我們認為全球 CISO 面臨的最關鍵挑戰。我們發佈了跨越 Cloudflare 產品組合的功能,從應用程式安全到保護員工和雲端基礎架構。我們也發佈了一些關於如何採用零號客戶方法使用 Cloudflare 服務來管理 Cloudflare 安全性的故事。

我們希望您覺得這些故事很有趣,並對新的 Cloudflare 產品感到期待。如果您錯過了這些公告,請參閱以下 Security Week 回顧:

應對 AI 帶來的機會和風險

.tg {border-collapse:collapse;border-color:#ccc;border-spacing:0;} .tg td{background-color:#fff;border-color:#ccc;border-style:solid;border-width:1px;color:#333; font-family:Arial, sans-serif;font-size:14px;overflow:hidden;padding:10px 5px;word-break:normal;} .tg th{background-color:#f0f0f0;border-color:#ccc;border-style:solid;border-width:1px;color:#333; font-family:Arial, sans-serif;font-size:14px;font-weight:normal;overflow:hidden;padding:10px 5px;word-break:normal;} .tg .tg-f50w{background-color:#F90;font-weight:bold;text-align:left;vertical-align:top} .tg .tg-zb5k{color:#15C;text-align:left;vertical-align:top} .tg .tg-zb5k a{border-bottom: 0} .tg .tg-0lax{text-align:left;vertical-align:top}

Title Excerpt
Cloudflare announces Firewall for AI Cloudflare announced the development of Firewall for AI, a protection layer that can be deployed in front of Large Language Models (LLMs) to identify abuses and attacks.
Defensive AI: Cloudflare’s framework for defending against next-gen threats Defensive AI is the framework Cloudflare uses when integrating intelligent systems into its solutions. Cloudflare’s AI models look at customer traffic patterns, providing that organization with a tailored defense strategy unique to their environment.
Cloudflare launches AI Assistant for Security Analytics We released a natural language assistant as part of Security Analytics. Now it is easier than ever to get powerful insights about your applications by exploring log and security events using the new natural language query interface.
Dispelling the Generative AI fear: how Cloudflare secures inboxes against AI-enhanced phishing Generative AI is being used by malicious actors to make phishing attacks much more convincing. Learn how Cloudflare’s email security systems are able to see past the deception using advanced machine learning models.

標題

Title Excerpt
Magic Cloud Networking simplifies security, connectivity, and management of public clouds Introducing Magic Cloud Networking, a new set of capabilities to visualize and automate cloud networks to give our customers easy, secure, and seamless connection to public cloud environments.
Secure your unprotected assets with Security Center: quick view for CISOs Security Center now includes new tools to address a common challenge: ensuring comprehensive deployment of Cloudflare products across your infrastructure. Gain precise insights into where and how to optimize your security posture.
Announcing two highly requested DLP enhancements: Optical Character Recognition (OCR) and Source Code Detections Cloudflare One now supports Optical Character Recognition and detects source code as part of its Data Loss Prevention service. These two features make it easier for organizations to protect their sensitive data and reduce the risks of breaches.
Introducing behavior-based user risk scoring in Cloudflare One We are introducing user risk scoring as part of Cloudflare One, a new set of capabilities to detect risk based on user behavior, so that you can improve security posture across your organization.
Eliminate VPN vulnerabilities with Cloudflare One The Cybersecurity & Infrastructure Security Agency issued an Emergency Directive due to the Ivanti Connect Secure and Policy Secure vulnerabilities. In this post, we discuss the threat actor tactics exploiting these vulnerabilities and how Cloudflare One can mitigate these risks.
Zero Trust WARP: tunneling with a MASQUE This blog discusses the introduction of MASQUE to Zero Trust WARP and how Cloudflare One customers will benefit from this modern protocol.
Collect all your cookies in one jar with Page Shield Cookie Monitor Protecting online privacy starts with knowing what cookies are used by your websites. Our client-side security solution, Page Shield, extends transparent monitoring to HTTP cookies.
Protocol detection with Cloudflare Gateway Cloudflare Secure Web Gateway now supports the detection, logging, and filtering of network protocols using packet payloads without the need for inspection.
Introducing Requests for Information (RFIs) and Priority Intelligence Requirements (PIRs) for threat intelligence teams Our Security Center now houses Requests for Information and Priority Intelligence Requirements. These features are available via API as well and Cloudforce One customers can start leveraging them today for enhanced security analysis.

摘要

Title Excerpt
Log Explorer: monitor security events without third-party storage With the combined power of Security Analytics and Log Explorer, security teams can analyze, investigate, and monitor logs natively within Cloudflare, reducing time to resolution and overall cost of ownership by eliminating the need of third-party logging systems.
Simpler migration from Netskope and Zscaler to Cloudflare: introducing Deskope and a Descaler partner update Cloudflare expands the Descaler program to Authorized Service Delivery Partners (ASDPs). Cloudflare is also launching Deskope, a new set of tooling to help migrate existing Netskope customers to Cloudflare One.
Protecting APIs with JWT Validation Cloudflare customers can now protect their APIs from broken authentication attacks by validating incoming JSON Web Tokens with API Gateway.
Simplifying how enterprises connect to Cloudflare with Express Cloudflare Network Interconnect Express Cloudflare Network Interconnect makes it fast and easy to connect your network to Cloudflare. Customers can now order Express CNIs directly from the Cloudflare dashboard.
Cloudflare treats SASE anxiety for VeloCloud customers The turbulence in the SASE market is driving many customers to seek help. We’re doing our part to help VeloCloud customers who are caught in the crosshairs of shifting strategies.
Free network flow monitoring for all enterprise customers Announcing a free version of Cloudflare’s network flow monitoring product, Magic Network Monitoring. Now available to all Enterprise customers.
Building secure websites: a guide to Cloudflare Pages and Turnstile Plugin Learn how to use Cloudflare Pages and Turnstile to deploy your website quickly and easily while protecting it from bots, without compromising user experience.
General availability for WAF Content Scanning for file malware protection Announcing the General Availability of WAF Content Scanning, protecting your web applications and APIs from malware by scanning files in-transit.

Cloudflare 宣佈推出 Firewall for AI

Title Excerpt
Cloudflare protects global democracy against threats from emerging technology during the 2024 voting season At Cloudflare, we’re actively supporting a range of players in the election space by providing security, performance, and reliability tools to help facilitate the democratic process.
Navigating the maze of Magecart: a cautionary tale of a Magecart impacted website Learn how a sophisticated Magecart attack was behind a campaign against e-commerce websites. This incident underscores the critical need for a strong client side security posture.
Cloudflare’s URL Scanner, new features, and the story of how we built it Discover the enhanced URL Scanner API, now integrated with the Security Center Investigate Portal. Enjoy unlisted scans, multi-device screenshots, and seamless integration with the Cloudflare ecosystem.
Changing the industry with CISA’s Secure by Design principles Security considerations should be an integral part of software’s design, not an afterthought. Explore how Cloudflare adheres to Cybersecurity & Infrastructure Security Agency’s Secure by Design principles to shift the industry.
The state of the post-quantum Internet Nearly two percent of all TLS 1.3 connections established with Cloudflare are secured with post-quantum cryptography. In this blog post we discuss where we are now in early 2024, what to expect for the coming years, and what you can do today.
Advanced DNS Protection: mitigating sophisticated DNS DDoS attacks Introducing the Advanced DNS Protection system, a robust defense mechanism designed to protect against the most sophisticated DNS-based DDoS attacks.

Cloudflare 宣佈開發 Firewall for AI,這是一個可以部署在大型語言模型 (LLM) 前方的保護層,用於識別濫用和攻擊。

Title Excerpt
Linux kernel security tunables everyone should consider adopting This post illustrates some of the Linux kernel features that are helping Cloudflare keep its production systems more secure. We do a deep dive into how they work and why you should consider enabling them.
Securing Cloudflare with Cloudflare: a Zero Trust journey A deep dive into how we have deployed Zero Trust at Cloudflare while maintaining user privacy.
Network performance update: Security Week 2024 Cloudflare is the fastest provider for 95th percentile connection time in 44% of networks around the world. We dig into the data and talk about how we do it.
Harnessing chaos in Cloudflare offices This blog discusses the new sources of “chaos” that have been added to LavaRand and how you can make use of that harnessed chaos in your next application.
Launching email security insights on Cloudflare Radar The new Email Security section on Cloudflare Radar provides insights into the latest trends around threats found in malicious email, sources of spam and malicious email, and the adoption of technologies designed to prevent abuse of email.

防禦性 AI:Cloudflare 用於抵禦新一代威脅的架構

防禦性 AI 是 Cloudflare 將智慧系統整合到其解決方案中時所使用的框架。Cloudflare 的 AI 模型著眼於客戶流量模式,為該組織提供適合其環境的定制防禦策略。

Cloudflare 推出適用於安全性分析的 AI 助理

我們發佈了自然語言助理作為 Security Analytic 的一部分。現在,透過使用新的自然語言查詢介面探索記錄和安全事件,能夠比以往任何時候都更輕鬆地獲得有關應用程式的強大見解。

消除產生式 AI 恐懼:Cloudflare 如何保護收件匣免遭 AI 增強網路釣魚的攻擊

惡意行為者正在使用產生式 AI 增強網路釣魚攻擊的說服力。瞭解 Cloudflare 的電子郵件安全系統如何能夠使用進階機器學習模型看透欺騙的伎倆。

隨著應用程式和雲端的變更保持可見性和控制

.tg {border-collapse:collapse;border-color:#ccc;border-spacing:0;} .tg td{background-color:#fff;border-color:#ccc;border-style:solid;border-width:1px;color:#333; font-family:Arial, sans-serif;font-size:14px;overflow:hidden;padding:10px 5px;word-break:normal;} .tg th{background-color:#f0f0f0;border-color:#ccc;border-style:solid;border-width:1px;color:#333; font-family:Arial, sans-serif;font-size:14px;font-weight:normal;overflow:hidden;padding:10px 5px;word-break:normal;} .tg .tg-f50w{background-color:#F90;font-weight:bold;text-align:left;vertical-align:top} .tg .tg-zb5k{color:#15C;text-align:left;text-decoration:underline;vertical-align:top} .tg .tg-zb5k a{border-bottom: 0} .tg .tg-0lax{text-align:left;vertical-align:top}

標題

摘要

Magic Cloud Networking 簡化了公有雲端的安全、連線和管理

推出 Magic Cloud Networking,這是一組用於視覺化和自動化雲端網路的新功能,可將我們的客戶輕鬆、安全且順暢地連線至公有雲端環境。

藉助安全中心確保未受保護資產的安全:CISO 的快速檢視

安全中心現在包含新工具來應對常見挑戰:確保在您的基礎架構中全面部署 Cloudflare 產品。深入而精確地瞭解在何處以及如何最佳化安全狀態。

推出兩個眾人引頸期待的 DLP 增強功能:光學字元識別 (OCR) 和原始程式碼偵測

現在,作為資料丟失預防服務的一部分,Cloudflare One 支援光學字元識別和原始程式碼偵測。這兩項功能讓組織能夠更輕鬆地保護其敏感資料並減少外洩風險。

在 Cloudflare One 中引入基於行為的使用者風險評分

我們將引入使用者風險評分作為 Cloudflare One 的一部分,這是一組根據使用者行為偵測風險的新功能,以便您可以改善整個組織的安全狀態。

使用 Cloudflare One 消除 VPN 漏洞

由於 Ivanti Connect Secure 和 Policy Secure 漏洞,美國網路安全和基礎架構安全局發出了緊急指令。在這篇文章中,我們討論了利用這些漏洞的威脅行為者策略以及 Cloudflare One 如何緩解這些風險。

Zero Trust WARP:使用 MASQUE 建立通道

本篇部落格討論了將 MASQUE 引入 Zero Trust WARP,以及 Cloudflare One 客戶如何從這一現代通訊協定中獲益。

使用 Page Shield Cookie Monitor 將您的所有 Cookie 收集在一個罐子裡

保護線上隱私首先要瞭解您的網站使用了哪些 Cookie。我們的用戶端安全解決方案 Page Shield 將透明監控擴展到 HTTP cookie。

使用 Cloudflare Gateway 偵測通訊協定

Cloudflare 安全 Web 閘道現在支援使用封包負載對網路通訊協定進行偵測、記錄和篩選,而無需檢查。

向威脅情報團隊推出資訊要求 (RFI) 和優先情報需求 (PIR)

我們的安全中心現在包括資訊要求和優先情報需求。這些功能也可以透過 API 獲得,Cloudforce One 客戶現在就可以開始利用它們來增強安全性分析。

整合以降低成本

.tg {border-collapse:collapse;border-color:#ccc;border-spacing:0;} .tg td{background-color:#fff;border-color:#ccc;border-style:solid;border-width:1px;color:#333; font-family:Arial, sans-serif;font-size:14px;overflow:hidden;padding:10px 5px;word-break:normal;} .tg th{background-color:#f0f0f0;border-color:#ccc;border-style:solid;border-width:1px;color:#333; font-family:Arial, sans-serif;font-size:14px;font-weight:normal;overflow:hidden;padding:10px 5px;word-break:normal;} .tg .tg-f50w{background-color:#F90;font-weight:bold;text-align:left;vertical-align:top} .tg .tg-zb5k{color:#15C;text-align:left;text-decoration:underline;vertical-align:top} .tg .tg-zb5k a{border-bottom: 0} .tg .tg-0lax{text-align:left;vertical-align:top}

標題

摘要

Log Explorer:監控安全事件,無需第三方儲存

透過 Security Analytics 和 Log Explorer 的強大功能,安全團隊可以在 Cloudflare 中原生分析、調查和監控記錄,消除對第三方記錄系統的需求,從而縮短解決問題的時間並降低整體擁有成本。

簡化從 Netskope 和 Zscaler 到 Cloudflare 的遷移:推出 Deskope 和 Descaler 合作夥伴更新

Cloudflare 將 Descaler 計畫擴展到授權服務交付合作夥伴 (ASDP)。Cloudflare 還推出了 Deskope,這套新工具會幫助現有的 Netskope 客戶遷移至 Cloudflare One。

使用 JWT 驗證保護 API

現在,Cloudflare 客戶可以透過使用 API Gateway 驗證傳入的 JSON Web 權杖,來保護 API 免遭受損驗證攻擊。

如何透過 Express Cloudflare Network Interconnect 簡化企業與 Cloudflare 的連線方式

使用 Express Cloudflare Network Interconnect,可快速輕鬆地將網路連線至 Cloudflare。客戶現在可以直接從 Cloudflare 儀表板訂購 Express CNI。

Cloudflare 為 VeloCloud 客戶撫平 SASE 焦慮

動蕩不安的 SASE 市場促使很多客戶開始尋求幫助。我們正在貢獻自己的一份力量,幫助 VeloCloud 客戶擺脫策略轉變困境。

為所有企業客戶提供免費的網路流量監控

宣佈推出 Cloudflare 網路流量監控產品 Magic Network Monitoring 的免費版本。現在可供所有企業方案客戶使用。

構建安全網站:Cloudflare Pages 和 Turnstile 外掛程式指南

瞭解如何使用 Cloudflare Pages 和 Turnstile 快速而輕鬆地部署網站,同時保護網站免遭機器人攻擊而不會影響使用者體驗。

WAF Content Scanning 正式上市以提供檔案惡意程式碼防護

宣佈 WAF Content Scanning 正式上市,從而透過掃描傳輸中檔案,保護您的 Web 應用程式和 API 免遭惡意程式碼攻擊。

我們如何幫助打造更好的網際網路?

.tg {border-collapse:collapse;border-color:#ccc;border-spacing:0;} .tg td{background-color:#fff;border-color:#ccc;border-style:solid;border-width:1px;color:#333; font-family:Arial, sans-serif;font-size:14px;overflow:hidden;padding:10px 5px;word-break:normal;} .tg th{background-color:#f0f0f0;border-color:#ccc;border-style:solid;border-width:1px;color:#333; font-family:Arial, sans-serif;font-size:14px;font-weight:normal;overflow:hidden;padding:10px 5px;word-break:normal;} .tg .tg-f50w{background-color:#F90;font-weight:bold;text-align:left;vertical-align:top} .tg .tg-zb5k{color:#15C;text-align:left;text-decoration:underline;vertical-align:top} .tg .tg-zb5k a{border-bottom: 0} .tg .tg-0lax{text-align:left;vertical-align:top}

標題

摘要

Cloudflare 在 2024 年投票季保護全球民主政體免遭新興技術威脅

在 Cloudflare,我們透過提供安全性、效能和可靠性工具,幫助促進民主進程,來積極支援選舉領域的一系列參與者。

勇闖 Magecart 迷宮:一個受 Magecart 影響之網站的警示性故事

瞭解在針對電子商務網站的攻擊活動背後複雜的 Magecart 攻擊是如何實施的。此事件強調了對強大的用戶端安全狀態的迫切需求。

Cloudflare 的 URL 掃描程式、新功能以及如何構建的故事

探索增強的 URL 掃描程式 API,現已與安全中心調查入口網站整合。享受 Cloudflare 生態系統內的未列出掃描、多裝置螢幕擷取畫面和無縫整合。

使用 CISA 的 Secure by Design 原則進行產業變革

安全考量應該是軟體設計不可或缺的一個部分,而不是事後添加。探索 Cloudflare 如何遵守網路安全和基礎架構安全局的 Secure by Design 原則來推進產業轉型。

後量子網際網路現狀

在使用 Cloudflare 建立的所有 TLS 1.3 連線中,有將近 2% 使用後量子加密提供安全保障。在這篇部落格文章中,我們將討論我們在 2024 年初的現狀、未來幾年的預期目標以及現在可以做些什麼。

Advanced DNS Protection:緩解複雜的 DNS DDoS 攻擊

推出 Advanced DNS Protection 系統,這是一種可靠的防禦機制,旨在防範最複雜的基於 DNS 的 DDoS 攻擊。

分享 Cloudflare 方式

.tg {border-collapse:collapse;border-color:#ccc;border-spacing:0;} .tg td{background-color:#fff;border-color:#ccc;border-style:solid;border-width:1px;color:#333; font-family:Arial, sans-serif;font-size:14px;overflow:hidden;padding:10px 5px;word-break:normal;} .tg th{background-color:#f0f0f0;border-color:#ccc;border-style:solid;border-width:1px;color:#333; font-family:Arial, sans-serif;font-size:14px;font-weight:normal;overflow:hidden;padding:10px 5px;word-break:normal;} .tg .tg-f50w{background-color:#F90;font-weight:bold;text-align:left;vertical-align:top} .tg .tg-zb5k{color:#15C;text-align:left;text-decoration:underline;vertical-align:top} .tg .tg-zb5k a{border-bottom: 0} .tg .tg-0lax{text-align:left;vertical-align:top}

標題

摘要

人人都應考慮採用的 Linux 核心安全可調項

這篇文章說明了 Linux 核心的部分功能,這些功能正在幫助 Cloudflare 提高其生產系統的安全性。我們深入探討了它們的工作原理以及為什麼您應該考慮啟用它們。

以 Cloudflare 保護 Cloudflare:一段 Zero Trust 旅程

深度剖析我們如何在 Cloudflare 部署 Zero Trust 並維護使用者隱私。

網路效能更新:2024 年 Security Week

Cloudflare 是全球 44% 的網路中 P95 連線時間最快的提供者。我們進行了資料深度剖析,討論我們是如何做到的。

利用 Cloudflare 辦公室的混亂

這篇部落格文章將討論 LavaRand 中新增的「混亂」來源,以及如何在下一個應用程式中利用該混亂。

在 Cloudflare Radar 上發佈電子郵件安全性見解

Cloudflare Radar 上全新的「電子郵件安全性」區段提供了對最新趨勢的深入解析,包括在惡意電子郵件中發現的威脅、垃圾郵件和惡意電子郵件的來源,以及採用旨在防止濫用電子郵件的技術。

結束語

感謝您本週加入我們,請繼續關註四月初的下一次 Innovation Week,這一活動週將專注於開發人員社群。

我們保護整個企業網路,協助客戶有效地建置網際網路規模的應用程式,加速任何網站或網際網路應用程式抵禦 DDoS 攻擊,阻止駭客入侵,並且可以協助您實現 Zero Trust

從任何裝置造訪 1.1.1.1,即可開始使用我們的免費應用程式,讓您的網際網路更快速、更安全。

若要進一步瞭解我們協助打造更好的網際網路的使命,請從這裡開始。如果您正在尋找新的職業方向,請查看我們的職缺
Security WeekZero TrustApplication SecurityEmail SecurityAI

在 X 上進行關注

Ankur Aggarwal|@Encore_Encore
Cloudflare|@cloudflare

相關貼文

2024年10月23日 下午1:00

Fearless SSH: short-lived certificates bring Zero Trust to infrastructure

Access for Infrastructure, BastionZero’s integration into Cloudflare One, will enable organizations to apply Zero Trust controls to their servers, databases, Kubernetes clusters, and more. Today we’re announcing short-lived SSH access as the first available feature of this integration. ...

2024年10月08日 下午1:00

Cloudflare acquires Kivera to add simple, preventive cloud security to Cloudflare One

The acquisition and integration of Kivera broadens the scope of Cloudflare’s SASE platform beyond just apps, incorporating increased cloud security through proactive configuration management of cloud services. ...