HTTP/2 Rapid Reset: deconstructing the record-breaking attack
2023-10-10
This post dives into the details of the HTTP/2 protocol, the feature that attackers exploited to generate the massive Rapid Reset attacks...
HTTP/2 Zero-Day vulnerability results in record-breaking DDoS attacks
2023-10-10
The “HTTP/2 Rapid Reset” attack exploits a weakness in the HTTP/2 protocol to generate enormous, hyper-volumetric DDoS attacks. Cloudflare has mitigated a barrage of these attacks in recent months, including an attack three times larger than any previous attack we’ve observed...
Internet traffic patterns in Israel and Palestine following the October 2023 attacks
2023-10-09
On Saturday, October 7, 2023, attacks from the Palestinian group Hamas launched from the Gaza Strip against the south of Israel started a new conflict in the region. Cloudflare's data shows that Internet traffic was impacted in different ways...
Virtual networking 101: bridging the gap to understanding TAP
2023-10-06
Tap devices were historically used for VPN clients. Using them for virtual machines is essentially reversing their original purpose - from traffic sinks to traffic sources. In the article I explore the intricacies of tap devices, covering topics like offloads, segmentation, and multi-queue....
Uncovering the Hidden WebP vulnerability: a tale of a CVE with much bigger implications than it originally seemed
2023-10-05
Google announced a security issue in Chrome titled "Heap buffer overflow in WebP in Google Chrome." At first it seemed like just another bug, but has implications that extended well beyond Chrome....
Cloudflare's a Top 100 Most Loved Workplace for the second consecutive year in 2023
2023-10-05
We are proud to share that Cloudflare has been certified and recognized as one of the Top 100 Most Loved Workplaces in 2023 by Newsweek and the Best Practice Institute (BPI) for the second consecutive year....
1.1.1.1 lookup failures on October 4, 2023
2023-10-04
On 4 October 2023, Cloudflare experienced DNS resolution problems. Some users may have received SERVFAIL DNS responses to valid queries. In this blog, we’re going to talk about what the failure was, why it occurred, and what we’re doing to make sure this doesn’t happen again...
All Cloudflare customers protected from the Atlassian Confluence CVE-2023-22515
2023-10-04
On 2023-10-04 at 13:00 UTC, Atlassian released details of the zero-day vulnerability described as “Privilege Escalation Vulnerability in Confluence Data Center and Server” (CVE-2023-22515), a zero-day vulnerability impacting Confluence Server and Data Center products...
Waiting Room adds multi-host and path coverage, unlocking broader protection and multilingual setups
2023-10-04
Today, we are thrilled to announce that Waiting Room now supports coverage of multiple hostname and path combinations with a single waiting room, giving customers more flexibility and offering broader site coverage without interruptions to end-user flows...
Announcing General Availability for the Magic WAN Connector: the easiest way to jumpstart SASE transformation for your network
2023-10-03
We’re announcing the general availability of the Magic WAN Connector, which serves as the glue between your existing network hardware and Cloudflare’s networ...
Birthday Week recap: everything we announced — plus an AI-powered opportunity for startups
2023-10-02
Birthday WeekProduct NewsAITurnstileCAPTCHAResearchMachine LearningSecurityConnectivity CloudR2 StorageD1Beta
Need a recap or refresher on all the big Birthday Week news this week? This recap has you covered...
Post-quantum cryptography goes GA
2023-09-29
Cloudflare announces Post-Quantum Cryptography as a Generally Available system...
Encrypted Client Hello - the last puzzle piece to privacy
2023-09-29
We're excited to announce a contribution to improving privacy for everyone on the Internet. Encrypted Client Hello, a new standard that prevents networks from snooping on which websites a user is visiting, is now available on all Cloudflare plans. ...
Cloudflare now uses post-quantum cryptography to talk to your origin server
2023-09-29
Starting today, you can secure the connection between Cloudflare and your origin server with post-quantum cryptography...
Privacy-preserving measurement and machine learning
2023-09-29
Cloudflare is implementing DAP (Distributed Aggregation Protocol) – a way of aggregating data without exposing individual measurements that uses multi-party computation...
Network performance update: Birthday Week 2023
2023-09-29
In this post we are going to share the most recent updates since our last post in June, and tell you about our tools and processes that we use to monitor and improve our network performance...
See what threats are lurking in your Office 365 with Cloudflare Email Retro Scan
2023-09-29
We are now announcing the ability for Cloudflare customers to scan old messages within their Office 365 Inboxes for threats. This Retro Scan will let you look back seven days and see what threats your current email security tool has missed...
Detecting zero-days before zero-day
2023-09-29
In this blog post we talk about our approach and ongoing research into detecting novel web attack vectors in our WAF before they are seen by a security researcher....
Cloudflare is free of CAPTCHAs; Turnstile is free for everyone
2023-09-29
Now that we’ve eliminated CAPTCHAs at Cloudflare, we want to hasten the demise of CAPTCHAs across the internet. We’re thrilled to announce that Turnstile is generally available, and Turnstile’s ‘Managed’ mode is now completely free to everyone for unlimited use. ...
Easily manage AI crawlers with our new bot categories
2023-09-29
Manage AI crawlers, out of the box with Cloudflare...
