Security

May 28, 2019 6:45 PM

On Saturday, 11th May 2019, we got the news of a critical web vulnerability being actively exploited in the wild by advanced persistent threats (APTs), affecting Microsoft’s SharePoint server (versions 2010 through 2019)....

By 
• Georgie Yoxall

March 20, 2019 1:00 PM

HTTP requests originate with a client and end at a web server that processes the request and returns a response. Such requests pass through multiple proxies before arriving at the requested resource. ...

By 
• Alex Davidson

March 18, 2019 5:47 PM

The practice of HTTPS interception continues to be commonplace on the Internet. This blog post discusses types of monster-in-the-middle devices and software, and how to detect them....

By 
• Gabbi Fisher
• , Luke Valenta

March 15, 2019 5:01 PM

Ladies and gentlemen, I would like you to welcome the new shiny RFC8482, which effectively deprecates DNS ANY query type. DNS ANY was a "meta-query" - think about it as a similar thing to the common A, AAAA, MX or SRV query types, but unlike these it wasn't a real query type - it...

By 
• Marek Majkowski

March 05, 2019 10:55 PM

Drupal discovered a severe vulnerability and said they would release a patch. When the patch was released we analysed and created rules to mitigate these. By analysing the patch we created WAF rules to protect Cloudflare customers running Drupal....

By 
• Richard Sommerville

March 04, 2019 4:00 PM

In the previous post we described the Firewall Rules architecture and how the different components are integrated together. We created a configurable Rust library for writing and executing Wireshark®-like filters in different parts of our stack written in Go, Lua, C, C++ and Java...

By 
• Ingvar Stepanyan
• , Andrew Galloni

March 04, 2019 1:00 PM

Recently we launched Firewall Rules, a new feature that allows you to construct expressions that perform complex matching against HTTP requests and then choose how that traffic is handled....

By 
• David Kitchen

February 24, 2019 5:00 PM

A few months ago, we made a first then a second announcement about Cloudflare’s involvement in Resource Public Key Infrastructure (RPKI), and our desire to make BGP Internet routing more secure....

By 
• Louis Poinsignon

February 22, 2019 7:42 PM

We’re excited to make Cloudflare Registrar available to all of our customers and we’d like to share some insights and data about domain registration that we learned during the early access period....

By 
• Sam Rhea

February 21, 2019 3:18 PM

Last fall, the United States FBI warned organizations of an increase in attacks that exploit vulnerabilities in the Remote Desktop Protocol (RDP). Attackers stole sensitive data and compromised networks by taking advantage of desktops left unprotected....

By 
• Sam Rhea

February 20, 2019 3:14 PM

Bot-powered credential stuffing is a scourge on the modern Internet. These attacks attempt to log into and take over a user’s account by assaulting password forms with a barrage of dictionary words and previously stolen account credentials....

By 
• Nikon Rasumov

February 18, 2019 1:13 PM

cccccblgtbhdtvkdkbdfcdvgiicuckkdkruvfceiuiur ...

By 
• Marek Majkowski

February 07, 2019 5:00 PM

Cloudflare Access secures your internal sites by adding authentication. When a request is made to a site behind Access, Cloudflare asks the visitor to login with your identity provider....

By 
• Sam Rhea

February 05, 2019 4:00 PM

Cloudflare seeks to help its end customers use whichever public and private clouds best suit their needs. Towards that goal, we have been working to make sure our solutions work well with various public cloud providers including Microsoft’s Azure platform....

By 
• Peter Dumanian