#Cloudflare CEO: Football Piracy Blocks Will Claim Lives; “I Pray No One Dies” - https://torrentfreak.com/cloudflare-ceo-football-piracy-blocks-will-claim-lives-i-pray-no-one-dies-250526/

Вот что ещё нужно сделать, чтобы люди отказались от клаудфлэра??

Они наивно полагают, что флэр действительно защищает от ддос-атак, хотя показал абсолютную бесполезность стандартных правил блокировки много раз, в качестве примера приведу кейс N+1

Они доверяют инфраструктуре, хотя сервера флэра регулярно падают, падает весь централизованный интернет

И почему-то даже люди из ИТ не всегда осознают, что это — классический реверс-прокси, что флэр выполняет MitM-атаку: роутит запросы на свои сервера со своим TLS-сертификатом, расшифровывает трафик и перенаправляет его на настоящий сервер (upstream, origin server)

То есть флэр видит все ваши пароли и токены, отправляемые файлы, а заодно знает айпи-адрес, юзер-агент и все остальные хедеры, спокойно может подменить ответ апстрима (так и делает, кстати, в случае с минификацией css/js), ну и в итоге выполняет функцию глобальной системы трекинга, абсолютной слежки, которую админы добровольно установили на сайт и которую остановить адблоком уже не получится

@rf #cloudflare #privacy

Good news! We've officially added #Cloudflare #Workers support to the #Fedify roadmap. We've created a detailed issue to track our implementation plan: https://github.com/fedify-dev/fedify/issues/233.

The effort will be tackled in phases, including compatibility assessment, core adaptations for Workers' environment, KV store and message queue implementations, and finally integration with Cloudflare's ecosystem. This will be a substantial project that we'll break down into several sub-issues.

If you're interested in contributing to any specific aspect of Workers support, please comment on the main issue to coordinate efforts.

Die GRÜNEN nutzen inzwischen Cloudflare für ihre E-Mails, die Webseite liegt bei Vercel. Läuft ja...

#Datenschutz #DigitaleSouveränität #Cloudflare #Vercel

alright, @alexchapman and everyone, you guys should really look at this!
i'm really fuckin mad right now!
so the password leaked feature on cloudflare WAF?
completely!
fuckin!
deceptive!
I don't know about you, but to me, this is a pretty....damn alarming issue!
I want you to come along with me as I show you why
go here
https://myaccount.blindsoft.net and try these credentials, you will quickly find out they work perfectly, with no roadblocks, even though, in theory, this should not work!
email:
leaked@blindsoft.net
password (without quotes): "admin123"
#cloudflare #cybersecurity @infosec @cybersecurity

https://torrentfreak.com/dns-piracy-blocking-orders-google-cloudflare-and-opendns-respond-differently-250511/

in short, when Government agencies insist a DNS provider block (or worse poison) the resolver for a given pirate site, companies have responded in different ways

OpenDNS = Would rather stop serving an entire country than capitulate

Cloudflare = Blocks the IP but gives an explicit error message stating that it is being forced to do so.

Google DNS = Complete & total submission, DNS won't resolve, leaves customers in the dark.

When can we declare IP Geo location / country code blocking practically dead as a mitigation strategy?

Sure it is still useful blocking script kiddies from Iran and other low hanging fruit, but do any serious APT crews actually launch attacks from their home country anymore?

With the use of zero trust, distributed attack and delivery networks (looking at you Cloudflare), and VPN usage country blocking feels less useful than in the past.

Teraz czas na zabawę.
#n8n, #NextCloud i #OpenWebUI postawione na #Raspberrypi5 i połączone ze światem zewnętrznym tunelem #Cloudflare
#linux

Teraz czas na zabawę. #n8n, #NextCloud i #OpenWebUI postawione na #Raspberrypi5 i połączone ze światem zewnętrznym tunelem #Cloudflare #linux

#Cloudflare reports a 358% YoY surge in DDoS attacks in Q1 2025, over 20.5 million incidents. Germany was hit hardest, with record-breaking hyper-volumetric attacks peaking at 6.5 Tbps & 4.8 Bpps.

Read: https://hackread.com/germany-most-targeted-country-q1-2025-ddos-attacks/

#Cloudflare mitigates record number of #DDoS attacks in 2025

https://www.bleepingcomputer.com/news/security/cloudflare-mitigates-record-number-of-ddos-attacks-in-2025/

#NFTs That Cost Millions Replaced With Error Message After Project Downgraded to Free #Cloudflare Plan

https://www.404media.co/nfts-that-cost-millions-replaced-with-error-message-after-project-downgraded-to-free-cloudflare-plan/

@cR0w @da_667 nodds in agreement

• I'm convinced #Microsoft won't "fix" #Windows (by migrating to #Linux and merely integrating a #WindowsSubsystemForLinux (aka. #Wine) instead of their botched #LinuxSubsystemForWindows) because they do get $$$$$$$$ from the #Scareware-#Scam-Industry that is "#Antivirus"-#Software!

But the best are those "#AV" Vendors that use #ClownFlare "for #DDoS-Protection" like some #malware distributors from #Russia.

• Makes them look really trustworthy!

Personally, I just #ban all #proproetary file.formats & -protocols as a matter of principle!

Our new report describes one of the latest observed infection chains (delivering #AsyncRAT) relying on the #Cloudflare tunnel infrastructure and the attacker’s #TTPs with a principal focus on detection opportunities.

https://blog.sekoia.io/detecting-multi-stage-infection-chains-madness/

Can you imagine a country where you can't access your server through a cloudflare tunnel because a national sports association has managed to ban its access (and any website that uses it) because pirate sports broadcasting websites also use it? That country is Spain.

By the way, it's midnight around here and the cloudlflare tunnel is working again because the sports day is over.