The Cloudflare Blog

MadeYouReset: An HTTP/2 vulnerability thwarted by Rapid Reset mitigations

2025-08-14

A new HTTP/2 denial-of-service (DoS) vulnerability called MadeYouReset was recently disclosed by security researchers. Cloudflare HTTP DDoS mitigation, already protects from MadeYouReset....

MadeYouReset: An HTTP/2 vulnerability thwarted by Rapid Reset mitigations

Aligning our prices and packaging with the problems we help customers solve

2025-08-11

Product News SAAS Security SASE Security

You asked for simplicity. We listened. Introducing Externa and Interna, two new use-case-driven packages to simplify how you connect and protect your entire infrastructure....

Redesigning Workers KV for increased availability and faster performance

2025-08-08

Cloudflare Workers KV Post Mortem

Workers KV is Cloudflare's global key-value store. After the incident on June 12, we re-architected KV’s redundant storage backend, remove single points of failure, and make substantial improvements. ...

Partnering with OpenAI to bring their new open models onto Cloudflare Workers AI

2025-08-05

AI Containers Developers

OpenAI’s newest open-source models are now available on Cloudflare Workers AI on Day 0, with support for Responses API, Code Interpreter and Web Search (coming soon)....

Reducing double spend latency from 40 ms to < 1 ms on privacy proxy

2025-08-05

Privacy Privacy Pass Performance TCP

We significantly sped up our privacy proxy service by fixing a 40ms delay in "double-spend" checks....

Ben Yang

Perplexity is using stealth, undeclared crawlers to evade website no-crawl directives

2025-08-04

Cloudforce One Threat Intelligence AI Bots Bots AI Bot Management Security Generative AI

Perplexity is repeatedly modifying their user agent and changing IPs and ASNs to hide their crawling activity, in direct conflict with explicit no-crawl preferences expressed by websites....

Vulnerability disclosure on SSL for SaaS v1 (Managed CNAME)

2025-08-01

Vulnerabilities Cloudflare for SaaS Security

An upcoming vulnerability disclosure in Cloudflare’s SSL for SaaSv1 is detailed, explaining the steps we’ve taken towards deprecation....

The White House AI Action Plan: a new chapter in U.S. AI policy

2025-07-25

AI Policy & Legal Politics

The White House AI Action Plan is a pivotal policy document outlining the current administration's priorities and deliverables in AI to establish American AI as the gold standard for AI worldwide....

Serverless Statusphere: a walk through building serverless ATProto applications on Cloudflare’s Developer Platform

2025-07-24

Durable Objects Wrangler Rust

Build and deploy real-time, decentralized Authenticated Transfer Protocol (ATProto) apps on Cloudflare Workers....

Inanna Malick

Building Jetflow: a framework for flexible, performant data pipelines at Cloudflare

2025-07-23

Data Go Performance Design Engineering

Faced with a data-ingestion challenge at a massive scale, Cloudflare's Business Intelligence team built a new framework called Jetflow....

Cloudflare protects against critical SharePoint vulnerability, CVE-2025-53770

2025-07-22

WAF CVE

Microsoft disclosed two critical vulnerabilities, CVE-2025-53771 and CVE-2025-53770, that are exploited to attack SharePoint servers....

Shutdown season: the Q2 2025 Internet disruption summary

2025-07-22

Radar Internet Shutdown Internet Traffic Consumer Services

In Q2 2025, we observed Internet disruptions around the world resulting from government-directed shutdowns, power outages, cable damage, a cyberattack, and technical problems....

David Belson

Quicksilver v2: evolution of a globally distributed key-value store (Part 2)

2025-07-17

Cache Quicksilver Storage Key Value

This is part two of a story about how we overcame the challenges of making a complex system more scalable....

Explore your Cloudflare data with Python notebooks, powered by marimo

2025-07-16

Developer Platform API R2 Data Catalog Notebooks

We’ve partnered with marimo to bring their best-in-class Python notebook experience to your Cloudflare data....

Cloudflare 1.1.1.1 incident on July 14, 2025

2025-07-15

Outage IPv4 1.1.1.1 WARP

July 14th, 2025, Cloudflare made a change to our service topologies that caused an outage for 1.1.1.1 on the edge, causing downtime for 62 minutes for customers using the 1.1.1.1 public DNS Resolver....

Cloudflare recognized as a Visionary in 2025 Gartner® Magic Quadrant™ for SASE Platforms

2025-07-15

Cloudflare One SASE Gartner

Gartner has recognized Cloudflare as a Visionary in the 2025 Gartner® Magic Quadrant™ for SASE Platforms report....

Hyper-volumetric DDoS attacks skyrocket: Cloudflare’s 2025 Q2 DDoS threat report

2025-07-15

DDoS Reports DDoS Connectivity Cloud DDoS Alerts Radar Internet Traffic

June was the busiest month for DDoS attacks in 2025 Q2, accounting for nearly 38% of all observed activity....

Quicksilver v2: evolution of a globally distributed key-value store (Part 1)

2025-07-10

Quicksilver Cache RocksDB Storage Replication Distributed

This blog post is the first of a series, in which we share our journey in redesigning Quicksilver — Cloudflare’s distributed key-value store that serves over 3 billion keys per second globally. ...

How TimescaleDB helped us scale analytics and reporting

2025-07-08

Cloudflare Zero Trust Cloudflare One

Cloudflare chose TimescaleDB to power its Digital Experience Monitoring and Zero Trust Analytics products. ...

Robert Cepa

Introducing simple and secure egress policies by hostname in Cloudflare’s SASE platform

2025-07-07

Cloudflare Gateway Cloudflare One Egress SASE Zero Trust Access Control Lists (ACLs)Categories Hostnames

Cloudflare's SASE platform now offers egress policies by hostname, domain, content category, and application in open beta....

Older Posts →