Cloudflare's systems breached in recent cyberattack

On February 1, Cloudflare, a leading global content delivery network services, cloud security, DDoS mitigation, and domain registration services company, disclosed details about a November cyberattack in which criminals were able to access some of the organization’s private documentation and a “limited amount of source code.”

About the attack

According to The Hacker News, a threat actor gained access to Cloudflare’s systems on November 14, 2023, and was able to operate undetected for nine days before being discovered by the company’s security team, which immediately responded and cut off the attacker’s access. Following the breach, Cloudflare underwent a full internal investigation and hired Crowdstrike to independently review the incident. Both investigations confirmed that no client data was accessed, but the threat actor managed to infiltrate Cloudflare’s Atlassian environment and appeared to be attempting to “[gain] insights into Cloudflare’s network architecture and security.” Due to the “thoughtful and methodical manner” in which the attack took place, Cloudflare is attributing the incident to a nation-state actor, although it has not revealed any other information about the attacker.

Not the first breach

In response to the incident, Cloudflare “rotated more than 5,000 production credentials, physically segmented test and staging systems, carried out forensic triages on 4,893 systems, [and] reimaged and rebooted every machine across its global network” to ensure that its network is totally secure. However, this isn’t the first time that this particular threat actor was able to breach Cloudflare’s systems; it originally gained access to Cloudflare with client credentials that it stole from Okta in an October 2023 breach, and was thus able to “[regain] access to some of the content delivery network’s systems in mid-November.”

ALTERNcloud’s CDN: Fast, safe, secure

Although Cloudflare managed to prevent attackers from accessing client data in the November cyber attack, its only a matter of time before another threat actor attempts to break into its systems again. If you’re currently a Cloudflare customer and you’re concerned about whether or not you can trust Cloudflare to keep your business’s data secure, ALTERNcloud is here to help.

ALTERNcloud’s CDN stores content close users, allowing website publishers to deliver files quickly and smoothly from our edge servers.

Our next-gen Edge CDN is a distributed content delivery network that allows your website to load faster in users’ browsers, regardless of how far they are from the source server. An all-in-one solution, it will optimize, distribute, and protect your website, application, and services. Our network of edge servers around the world accelerates web assets delivery and prevents outages and interruptions in your business flow. ALTERNcloud’s Edge CDN is:

Globally Distributed: Our network consists of more than 150 CDN PoPs and 25 Cloud locations.
Secure: Everything we offer seamlessly integrates state-of-the-art DDoS and web protection.
Edge Native: All of our products natively integrate with each other, so your apps always run smoothly at the edge.
Flexible and Scalable: Our global infrastructure lets us tailor our systems to perfectly fit our customers’ needs.

ALTERNcloud Edge CDN pricing starts at $35/month and includes 5 managed CDN resources and 1.5TB traffic per month. After that, only pay for what you use: $2 per additional CDN resource, and from $0.0273 per GB of Egress traffic billed monthly.

Discover how ALTERNcloud puts your privacy first and learn more about our CDN services on our blog.