Tag Archive for: CloudFlare

Cloudflare Okta Breach Doesn’t Have A Big Impact, Company Says


According to the company, the recent Cloudflare Okta breach has not caused any harm to any of the customers or users. However, the incident brought more questions about the Okta breach, which affects many different services and companies.

In today’s digital world, online data security is constantly under threat, making news of cyberattacks almost routine. However, when a company like Cloudflare—a leader in internet security—reports a breach, it grabs everyone’s attention, particularly when a nation-state is believed to be behind the attack. The Cloudflare Okta breach serves as a vivid reminder of the cyber dangers that loom in the shadows.

Cloudflare Okta breach explained

On November 14, Cloudflare found itself under attack. The intruders, suspected to be supported by a nation-state, targeted Cloudflare’s internal Atlassian server, aiming for critical systems, including the Confluence wiki, Jira bug database, and Bitbucket source code management.

This initial intrusion set the stage for a more aggressive attack on November 22, where the attackers established a strong presence on Cloudflare’s server, accessed the source code, and even attempted to infiltrate a console server tied to an undeveloped data center in São Paulo, Brazil.

cloudflare okta breach
Company executives explained the Cloudflare Okta breach incident on the official blog page (Image Credit)

The method of entry for the attackers was particularly concerning. They used credentials that were previously compromised during an Okta breach in October 2023, highlighting a critical oversight by Cloudflare in not rotating these credentials among the thousands affected, says Bleeping Computer.

Cloudflare CEO Matthew Prince, CTO John Graham-Cumming, and CISO Grant Bourzikas, said: “They then returned on November 22 and established persistent access to our Atlassian server using ScriptRunner for Jira, gained access to our source code management system (which uses Atlassian Bitbucket), and tried, unsuccessfully, to access a console server that had access to the data center that Cloudflare had not yet put into production in São Paulo, Brazil.” You can take a look at the full statement here.


1Password Okta breach unveiled by…

Source…

How IBM and Cloudflare are Collaborating to Mitigate Bot-Based Security Threats


How IBM and Cloudflare are Collaborating to Mitigate Bot-Based Security Threats


By Nataraj Nagaratnam | CTO, IBM Cloud Security, IBM

August 08, 2023

Across the globe, organizations are expanding their hybrid cloud environments to meet their transformation goals. These modernization efforts can support partnership ecosystems, supply chain demands, and other objectives, but they also have the potential to increase security and compliance concerns. According to IBM’s 2023 Cost of a Data Breach Report[1], 95 percent of the surveyed organizations studied have had more than one data breach.

To continue addressing the ever-changing threat landscape, IBM’s expanded offering in collaboration with Cloudflare, the Internet security, performance, and reliability company running one of the world’s largest and most interconnected networks today, is now available to Enterprise Premier Plan users. In 2018, IBM first introduced IBM Cloud Internet Services’ (CIS), powered by Cloudflare. This offering allows IBM Cloud customers to configure mission-critical web and application performance and security solutions to help them combat critical security challenges such as with Distributed Denial-of-Service (DDoS) mitigation and data theft protection. Both IBM and Cloudflare continue to have a mission of delivering solutions that will address these potentially costly security threats, without hindering Internet speed or business innovation.

“With the rise of DDoS attacks and data theft, it’s become important to have a provider that helps us meet the challenges of the ever-changing threat landscape. That’s why at Liquid Reply, we have called on IBM Cloud and Cloudflare to help support our security initiatives,” said Davide Sarais, IT Lead at Liquid Reply. “By using IBM Cloud Internet Services, we’ve been able to maintain our compliance posture t. The new features that are available to IBM and Cloudflare clients are exciting advancements that we hope will take our approach to security to the next level.”

New Offering: Cloudflare Bot Management on IBM Cloud Internet Services

As malicious bot attacks become more sophisticated and manual mitigations…

Source…

Cloudflare partners with Kyndryl to help enterprises modernize and scale corporate networks


Cloudflare has partnered with Kyndryl to help enterprises modernize and scale their corporate networks with managed WAN-as-a-Service and Cloudflare zero trust. The partnership couples Kyndryl’s expert managed end-to-end networking services with Cloudflare’s robust technology platform to enable enterprises to streamline connectivity to multiple clouds at scale.

The demands of modern applications, data, services, and connect-from-anywhere workloads are of top importance for businesses, including enterprises with legacy network infrastructure. Yet, organizations are increasingly faced with patchworks of data overload, on-premise technologies, public cloud services, and outdated networks, all of which contribute to operational loss and security risks.

Kyndryl’s expertise in network services and protecting business-critical infrastructure, coupled with Cloudflare’s global cloud platform, presents a partnership that enables enterprises to leverage a fully managed Internet security, performance, and reliability solution. The partnership allows enterprises to quickly scale network capacity based on business needs while reducing costs and presenting cost predictability.

“We have witnessed how enterprises are grappling with legacy hardware while introducing more and more cloud-based applications. As time goes on, this is only holding back business, limiting innovation potential, and increasing network security risk,” said Matthew Prince, CEO of Cloudflare.

“That’s why with Kyndryl we’ve made it seamless for enterprises to be guided through the entire transition of bringing their corporate networks to the cloud,” Prince added.

“As Cloudflare continues to expand on its end-to-end cloud solution, we turn to our partners to help deliver this full set of services at an even greater scale to our customers. Given Kyndryl’s industry-leading consulting and managed network services, there was a clear opportunity to partner in order to guide enterprises through their network transformations,” said Matt Harrell, Global Head of Channels and Alliances at Cloudflare.

“By bringing together Kyndryl’s proven track record with enterprises in managing solutions, and…

Source…

Cloudflare Announces Date of First Quarter 2023 Financial Results … – Galveston County Daily News



Cloudflare Announces Date of First Quarter 2023 Financial Results …  Galveston County Daily News

Source…