From bytecode to bytes: automated magic packet generation
2026-04-08
By applying symbolic execution and the Z3 theorem prover to BPF bytecode, we’ve automated the generation of malware trigger packets, cutting analysis time from hours to seconds....
Malware
Disrupting FlyingYeti's campaign targeting Ukraine
2024-05-30
In April and May 2024, Cloudforce One employed proactive defense measures to successfully prevent Russia-aligned threat actor FlyingYeti from launching their latest phishing campaign targeting Ukraine...
Malicious “RedAlert - Rocket Alerts” application targets Israeli phone calls, SMS, and user information
2023-10-14
On October 13, 2023, Cloudflare’s Cloudforce One Threat Operations Team became aware of a malicious Google Android application impersonating the real-time rocket alert app, Red Alert, which provides real-time rocket alerts for Israeli citizens...
How sophisticated scammers and phishers are preying on customers of Silicon Valley Bank
2023-03-14
In order to breach trust and trick unsuspecting victims, threat actors overwhelmingly use topical events as lures. The news about what happened at Silicon Valley Bank is the latest event to watch out for and stay vigilant against opportunistic phishing campaigns using SVB as the lure...
How Cloudflare can help stop malware before it reaches your app
2023-01-04
Today, we’re making the job of application security teams easier, by providing a content scanning engine integrated with our Web Application Firewall (WAF), so that malicious files being uploaded by end users, never reach origin servers in the first place...
Democratizing email security: protecting individuals and businesses of all sizes from phishing and malware attacks
2022-03-14
Once the acquisition of Area 1 closes, we plan to give all paid self-serve plans access to their email security technology at no additional charge...
Monsters in the Middleboxes: Introducing Two New Tools for Detecting HTTPS Interception
2019-03-18
The practice of HTTPS interception continues to be commonplace on the Internet. This blog post discusses types of monster-in-the-middle devices and software, and how to detect them....
Website Security Myths
2018-09-08
Some conversations are easy; some are difficult. Some are harmonious and some are laborious. But when it comes to website security, the conversation is confusing. Every organisation agrees, in theory, that their websites need to be secure....
When the Attackers Name Malware After You, You Know You're Doing Something Right
2013-02-14
CloudFlare's I'm Under Attack Mode (IUAM) is elegantly simple. When a site is under an application layer (Layer 7) distributed denial of service (DDoS) attack, the mode will return a challenge page to a visitor. ...
Thoughts on Abuse
2012-07-13
One of the behind the scenes topics we think about a lot at CloudFlare is how to handle abuse of our network. I realized that we hadn't exposed our thoughts on this clearly enough. In the next few days, we'll be making some minor updates to our Terms of Service....
CloudFlare & OpenDNS Work Together to Help the Web
2012-05-03
Several years ago, some suspected cyber criminals on the Internet wrote a family of malware dubbed DNSChanger. About a year ago, law enforcement tracked down the suspected cyber criminals behind this malware....
Breaking the Cycle of Malware
2011-07-20
Google did something terrific yesterday. They began notifying users with a certain kind of malware running on their PCs that they had a problem and linked them to tools to help clean it up. While it is currently limited, we think this is an important step by Google....
App #15 - GlobalSign HackAlert Malware Detection
2011-06-28
Your website security comes in many layers, against many threats. But how do you know if your site has a problem? Once you know, how do you solve the problem, to protect your customers and your reputation? ...
App a Day #12 - StopTheHacker Malware Scanning
2011-06-16
This CloudFlare App, StopTheHacker, is an easy way to protect your website from malware attacks and protect your online reputation. Beyond the time lost recuperating from a compromised site, you risk your search engine ranking and blocked access in browsers. ...