Colombo, Sri Lanka: Six million Internet properties now faster for six million Internet users

We are excited to add four new data centers this week to Cloudflare’s growing network, beginning with Colombo, Sri Lanka. This deployment is our 112th data center globally, and our 38th in Asia. CC BY-NC-ND 2.0 image by Pavel Dobrovsky Six million Internet properties using Cloudflare are now even faster Continue Reading

AES-CBC is going the way of the dodo

A little over a year ago, Nick Sullivan talked about the beginning of the end for AES-CBC cipher suites, following a plethora of attacks on this cipher mode. Today we can safely confirm that this prediction is coming true, as for the first time ever the share of AES-CBC cipher Continue Reading

You can now use Google Authenticator and any TOTP app for Two-Factor Authentication

Since the very beginning, Cloudflare has offered two-factor authentication with Authy, and starting today we are expanding your options to keep your account safe with Google Authenticator and any Time-based One Time Password (TOTP) app of your choice. If you want to get started right away, visit your account settings. Continue Reading

Discovering Great Talent with Path Forward

In the fall of 2016, I was just beginning my job search. I’d been lucky to lead HR at a number of great cutting-edge technology start-ups, and I was looking for my next adventure. I wanted to find a company that wasn’t just a great business–I wanted one that was Continue Reading

IBM Rational Collaborative Lifecycle Management XSS Vulnerability

At the beginning of this year, I discovered and reported a Cross-Site Scripting (XSS) vulnerability in IBM Rational Collaborative Lifecycle Management (CLM). This month IBM released a security bulletin that contains the fix for this vulnerability. In this blog, I want to share the details of this vulnerability. How to Continue Reading

Empty DDoS Threats: Meet the Armada Collective

Beginning in March 2016, we began hearing reports of a gang of cybercriminals once again calling themselves the Armada Collective. The calling card of the gang was an extortion email sent to a wide variety of online businesses threatening to launch DDoS attacks if they weren’t paid in Bitcoin. From Continue Reading

>