Cloudflare employees were recently targeted by a “sophisticated” cyberattack, and even though some fell for the scheme, the DDoS protection company managed to successfully defend itself. 

In a blog post(opens in new tab), Cloudflare co-founder Matthew Prince, together with team members Daniel Stinson-Diess and Sourov Zaman, explained how the attack happened and what made the difference between success and failure.

The threat actor made a couple of key preparations ahead of the attack: they registered a domain that looked legitimate and would fool many victims: cloudflare-okta.com. Okta is Cloudflare’s identity provider. They also managed to somehow obtain the phone numbers of almost 80 Cloudflare employees, as well as family members for some.


More

The Fintech Times: Visa Reveals Digital Products to be Launched Over the Year Catering to Evolving Consumer Demands

Built on the latest Fast Identity Online (FIDO) standards, the Visa Payment Passkey Service confirms a consumer’s…

Read More →

PYMNTS: Visa Recasts Digital Wallet Landscape at Intersection of Identity and Payments

Visa has enhanced their security and streamlined transactions by onboarding passkeys. Now consumers can confirm…

Read More →

Biometric Update: Authenticate 2024

Authenticate 2024Omni La Costa Resort & Spa, Carlsbad, CAOctober 14-16, 2024 It’s time to modernize…

Read More →


Subscribe to the FIDO newsletter

Stay Connected, Stay Engaged

Receive the latest news, events, research and implementation guidance from the FIDO Alliance. Learn about digital identity and fast, phishing-resistant authentication with passkeys.