Privacy-Preserving Compromised Credential Checking
October 14, 2021 12:59 PM
Announcing a public demo and open-sourced implementation of a privacy-preserving compromised credential checking service...
Research Directions in Password Security
October 14, 2021 12:59 PM
We've been studying password problems, including malicious logins using compromised credentials. Here's what we learned and here's where we think we can go from here with safer password systems....
Introducing SSL/TLS Recommender
October 12, 2021 1:01 PM
Introducing customized recommendations to improve the security of your website....
Dynamic Process Isolation: Research by Cloudflare and TU Graz
October 12, 2021 12:59 PM
Cloudflare worked with TU Graz to study the impact of Spectre on Cloudflare Workers and to develop new defenses against it. Today we're publishing a paper about our research....
MORE POSTS
October 08, 2021 10:29 AM
Helping Apache Servers stay safe from zero-day path traversal attacks (CVE-2021-41773)
On September 29th 2021, the Apache Security team was alerted of a path traversal vulnerability being actively exploited (zero-day) against Apache HTTP Server version 2.4.49. Customers running the affected Apache version, should update to 2.5.51 as soon as possible....
- By
October 01, 2021 12:05 AM
May I ask who’s calling, please? A recent rise in VoIP DDoS attacks
Over the past month, multiple Voice over Internet Protocol (VoIP) providers have been targeted by Distributed Denial of Service (DDoS) attacks from entities claiming to be REvil. ...
- By
September 14, 2021 12:58 PM
Data at Cloudflare just got a lot faster: Announcing Live-updating Analytics and Instant Logs
Today, we’re excited to introduce Live-updating Analytics and Instant Logs. For Pro, Business, and Enterprise customers, our analytics dashboards now update in real time. In addition to this, Enterprise customers can now view their HTTP request logs instantly in the Cloudflare da...
- By
September 08, 2021 9:18 AM
How Cloudflare helped mitigate the Atlassian Confluence OGNL vulnerability before the PoC was released
On August 25, 2021, Atlassian released a security advisory affecting their Confluence application. The Cloudflare WAF soon after started mitigating an increase in malicious traffic to vulnerable endpoints ensuring customers remained protected....
- By
August 23, 2021 1:08 PM
Making Magic Transit health checks faster and more responsive
Magic Transit advertises our customer’s IP prefixes directly from our edge network, applying DDoS mitigation and firewall policies to all traffic destined for the customer’s network. ...
- By
August 20, 2021 1:34 PM
Data protection controls with Cloudflare Browser Isolation
Starting today, your team can use Cloudflare’s Browser Isolation service to protect sensitive data inside the web browser. Administrators can define Zero Trust policies to control who can copy, paste, and print data in any web based application....
- By
August 20, 2021 1:00 PM
Announcing Tenant Control in Cloudflare Gateway
Today, we’re excited to announce Tenant Control in Cloudflare Gateway, a new feature that helps keep our work at work....
- By
August 19, 2021 12:59 PM
Building a Pet Cam using a Raspberry Pi, Cloudflare Tunnels and Teams
This was a perfect weekend project: I would set up my own pet cam, connect it to the Internet, and make it available for me to check from anywhere in the world....
- By
August 18, 2021 1:01 PM
Zero Trust controls for your SaaS applications
With Access in front of your SaaS applications, you can build Zero Trust rules that determine who can reach your SaaS applications in the same place where your rules for self-hosted applications and network access live....
- By
August 18, 2021 12:59 PM
Capturing Purpose Justification in Cloudflare Access
Starting today, Cloudflare for Teams administrators can prompt users to enter a justification for accessing an application prior to login. ...
- By
August 17, 2021 12:59 PM
6 New Ways to Validate Device Posture
Cloudflare for Teams adds additional posture capabilities to better protect Access backed applications...
- By
August 16, 2021 12:59 PM
Introducing Shadow IT Discovery
With Cloudflare for Teams, Administrators can allow their users to securely access applications with Cloudflare Access and explicitly block users from visiting various applications with Cloudflare Gateway....
- By
August 12, 2021 1:00 PM
More devices, fewer CAPTCHAs, happier users
Today, we are taking another step in helping to reduce the Internet’s reliance on CAPTCHAs to prove that you are not a robot. We are expanding the reach of our Cryptographic Attestation of Personhood experiment by adding support for a much wider range of devices. ...
- By
August 02, 2021 1:24 PM
Helping Keep Governments Safe and Secure
Cloudflare and Accenture Federal Services (AFS) have been selected to deliver a joint solution to help the United States Government defend against cybersecurity attacks....
- By