Application security, Security
February 15, 2024
Via: The RegisterIt has become possible to swiftly and inexpensively train, validate and deploy AI models and applications, yet while we embrace innovation, are we aware of the security risks? Because it’s not just the good guys who use AI – bad […]
Threats & Malware, Virus & Malware
February 9, 2024
Via: The RegisterAs artificial intelligence (AI) technology becomes increasingly complex so do the threats from bad actors. It is like a forever war. Half the time too, we barely know that we’re using AI, largely because it’s getting progressively cheaper and easier […]
Threats & Malware, Virus & Malware
November 10, 2023
Via: Security AffairsThe hacktivist group Anonymous Sudan claimed responsibility for the massive distributed denial-of-service (DDoS) attack that took down the website of Cloudflare. Cloudflare confirmed that a DDoS attack took down its website for a few minutes and ponited out that it […]
Threats & Malware, Vulnerabilities
August 8, 2023
Via: The Hacker NewsNew research has revealed that threat actors are abusing Cloudflare Tunnels to establish covert communication channels from compromised hosts and retain persistent access. “Cloudflared is functionally very similar to ngrok,” Nic Finn, a senior threat intelligence analyst at GuidePoint Security, […]
March 15, 2023
Via: Help Net SecurityCloudflare is entering the fraud detection market to help businesses identify and stop online fraud – including fraudulent transactions, fake account signups, account takeover attacks, and carding attacks – before it impacts their brand or their bottom line. Powered by […]
January 12, 2023
Via: Help Net SecurityCloudflare announced several new zero trust email security solutions, compatible with any email provider, to protect employees from multichannel phishing attacks, prevent sensitive data being exfiltrated via email, and help businesses speed up and simplify deployments. Now, Cloudflare is providing […]
Threats & Malware, Virus & Malware
January 9, 2023
Via: The Hacker NewsIn yet another campaign targeting the Python Package Index (PyPI) repository, six malicious packages have been found deploying information stealers on developer systems. The now-removed packages, which were discovered by Phylum between December 22 and December 31, 2022, include pyrologin, […]
September 28, 2022
Via: Help Net SecurityCloudflare announced the development of the Cloudflare Zero Trust SIM, a solution that secures every packet of data leaving mobile devices. With the Zero Trust SIM that Cloudflare is developing, organizations will be able to quickly and securely connect employee […]
August 26, 2022
Via: Security AffairsThe threat actors behind the attacks on Twilio and Cloudflare have been linked to a large-scale phishing campaign that targeted 136 organizations, security firm Group-IB reported. Most of the victims are organizations providing IT, software development, and cloud services. The […]
June 6, 2018
Via: TechRadarIn October 2016 DNS provider Dyn was hit by a major DDoS (Distributed Denial of Service) attack by an army of IoT devices which had been hacked especially for the purpose. Over 14,000 domains using Dyn’s services were overwhelmed and […]
January 19, 2018
Via: Security WeekMobile and cloud computing have challenged the concept of perimeter security. There is no longer an easily definable perimeter to defend. VPNs are a traditional, but not ideal solution. Neither approach addresses the attacker who gets through the perimeter or […]
November 14, 2017
Via: Security WeekWebsite performance optimization and security firm Cloudflare has expanded its reach to mobile with the acquisition of Neumob. The agreement brings Cloudflare’s global optimization network to mobile apps built with the Neumob SDK. Financial details were not disclosed. Sunnyvale, Calif.-based […]
October 16, 2017
Via: CSO OnlineLate last month, global distributed denial of service (DDoS) protection provider Cloudflare announced that it would no longer charge customers extra when they were under attack. The company claims to have nearly 10 million customers and a presence in 117 […]
May 1, 2017
Via: Security WeekCloudflare has launched a new service that aims to address one of the most wide-spread issues in today’s connected world: the poor security of Internet of Things (IoT) devices. Dubbed Orbit, the new service is designed to keep devices safe […]
March 3, 2017
Via: SoftpediaCloudflare investigated the mass leaking of encrypted browsing sessions Google’s experts discovered, but found no evidence of exploitation, despite the huge vulnerability the bug brought to the table. The company admits that this vulnerability had the potential to be much worse, […]
February 28, 2017
Via: The Hacker NewsCloudflare reported last night a bug in their service which could have leaked information from the services using their edge cache servers. Feedly uses Cloudflare as a security shield which increases the reliability and performance of the Feedly web application. As […]
February 27, 2017
Via: Threat PostThe Cloudflare content delivery network for months has been leaking customer data, everything from private messages to encryption keys and credentials belonging to users of some of the Internet’s biggest properties. The vulnerability has been addressed, Cloudflare CTO John Graham-Cumming […]
December 11, 2015
Via: CSO OnlineMillions of Web users could be left unable to access websites over the HTTPS protocol if those websites only use digital certificates signed with the SHA-2 hashing algorithm. The warning comes from Facebook and CloudFlare as browser makers are considering […]
September 28, 2015
Via: cloud-securityOne of #cloudflare’s customers was recently hit by a distributed denial-of-service (DDoS) attack that appeared to leverage a mobile ad network and malicious JavaScript. JavaScript-based DDoS attacks have been classified as Layer 7 attacks because they rely on apparently legitimate […]
July 14, 2015
Via: network-securityCloudFlare issued its transparency report for the first half of 2015 on Tuesday, which detailed the more than 50 requests it received from government for user information. The company, which prevents malicious web traffic through a cloud-based service, received 12 […]