Cloudflare TV

2024 Security Week edition. AI, networks, applications, and more

Presented by Grant Bourzikas, João Tomé
Originally aired on 

In this week's episode, we have a special edition all about Cloudflare’s first innovation week of the year, Security Week.

João Tomé and Cloudflare's CSO Grant Bourzikas discuss the week's key announcements. Topics include AI opportunities and risks, ensuring digital visibility and control, focusing on access control and security team monitoring, optimizing CISO spending, and network complexity reduction.

We showcase Cloudflare's new Firewall for AI, designed to safeguard AI applications for free, and our enhanced Defensive AI capabilities to counter emerging threats. Our introduction of Magic Cloud Networking, powered by our acquisition of Nefeli’s multicloud connectivity technology, marks Cloudflare's entry into this market. This product focuses on providing businesses with simple and secure multicloud solutions.

Additionally, there’s a URL scanner update, and email security features. We also have an update on our wall of lava lamps in San Francisco for entropy story — which includes our wall of double pendulums in our London office, and suspended translucent rainbows mobile in Austin. In a nutshell, this is how Cloudflare uses physical sources of entropy to add to the security of the Internet.

Last but not least, we celebrate International Women's Day with a message from our co-founder, Michelle Zatlyn. We also share a video from our London office and showcase some of the amazing images featured in our blog.

Check our Security Hub with all the blog posts and Cloudflare TV segments:


Transcript (Beta)

Hello everyone and welcome to This Week in Net. It's March the 8th, 2024, so that means that it's International Women's Day and also this is a special edition all about our Security Week.

So today we're going through some of the blog posts and announcements from AI to applications and network security.

I'm João Tomé based in Lisbon, Portugal and with me I have our CSO Grant Bourzikas.

Hello Grant, how are you?

Good, wonderful, wonderful to be here wrapping up this awesome week here with Security Week here at Cloudflare.

Exactly and you were in our show three weeks ago talking about security also and where are you based just for those who weren't aware?

Today I'm based in St. Louis, Missouri which is my hometown. And a few weeks ago when you were in the show you told us about a little bit about your background before Cloudflare as a CSO for more than 20 years working with the world's largest and most complex companies in a sense.

So this was a perspective on the Cloudflare side but that serves CSOs, right?

Yeah, I think you know when we talked about it was great when we talked a couple weeks ago and Thanksgiving incident and then you know this week we've talked, I kind of launched Security Week about this amazing things that we are going to produce, what I thought about trends, you know, kind of key themes and so today I think we're going to highlight what occurred this week at Cloudflare.

A lot of announcements, we started the week with AI but there's also protection of applications, employees, networks, having a sense of what's happening in the security realm, how important it is for those who work in this area to be aware of the new trends, new risks, be it also at ease with the choices they make.

How important is that? Yeah, you know, I think it's very important to understand what's going on, I think, with there.

I think over the, you know, the last few months we've seen everything's become AI, right?

And so I always talk about when I was at Davos and everything was going to be solved with AI and this is, you know, this was our big day on Monday of talking about some of the things that we've done but if you're not in tune with what's going on in AI, that's problematic and I think, you know, the attacks, we've seen a lot of attacks this year.

You know, we've seen Optum, we saw, you've talked about our incident, you know, we've seen all of these attacks that have occurred and understanding what they're doing and why they're doing is important and how, you know, are your partners like Cloudflare, you know, innovating to stop this, to help you, right?

One of the things we've talked a lot about a kind of key themes from CISOs that I've heard, you know, with over 100 kind of meetings in the last 12 months is, you know, how do you, you know, reduce complexity?

It's super important. People talk about our code red and why was code red something we were able to excel at?

At the end of the day, you know, what we've done is made things a little simpler, you know, we know where the front door is, we know where the back door is, we know what the network looks like, that helps, right?

Even from an economic, you know, from a cost constraint, we know where things are and I think as you look at this, over the years, we've seen a lot of, you know, companies that, you know, the McAfees and the Semantics, I'll say, over the last 15 years have become these big companies that had a lot of products and we've seen this trend over the last few that there's a lot of point products.

The point products are causing some challenges as well, that how many people you have in the organization, how can you defend yourself?

And so, as I think you look at your partners of, can they innovate?

Can they innovate with themselves?

Can they innovate, you know, during mergers and acquisitions? We'll talk about a big announcement we had with Nafeli this week.

And so, I think these are things when you start to look at your partners of, who do I want to make sure, you know, is in my corner?

You know, I think Cloudflare is a great position to be in there and this week just shows what we do.

We innovate, we build, we innovate, we build, we innovate.

We'll sprinkle in some acquisitions, we'll integrate it and then continue down this path.

And I think those are some things you need to take a step back and look at your vendors, you know, who and partners, you know, who is that person that wants to be there five years from now or 10 years that's going to be somebody that's going to continue to do this and make the best products in the world.

Makes sense. You mentioned that there's something that I can relate even as a previously a journalist, which is make it simple, plug and play.

Don't think too much about it.

You're protected, but you don't have to think too much about it. And the plug and play, ease of mind perspective on the security realm is quite important, I think.

Yeah, I think this is something that, you know, we've talked a lot and I talked a lot about cost constraints, you know, our security budget's going up.

They're going up a little, sometimes they're a little down, sometimes they're there.

But we just introduced a large risk, LLMs that every organization is trying to figure out how do we secure them?

I don't have the budget.

How do I, you know, I have a lot of complexity. How do I manage this? Right.

So, you know, we, you know, keep it simple, right. I think it's something that's there.

And, you know, when we start to build architectures that are complicated, it's a recipe for disaster.

Makes sense. I'll start sharing my screen here to show everyone our security week page available on slash security-week.

And we have all of the announcements here, also callflare TV segments, press releases.

One of the mentions that is actually in the beginning is that how we make Zero Trust even more accessible, better protect brands for phishing and fraud, and delivering also dynamic machine learning protections and more.

So that's in play in all of the announcements. The day, Monday was the day of AI, specifically.

And we had this amazing announcement related to firewall for AI.

This got us a lot of attention. That is firewall for AI. Yeah. And I think this is a big one, right.

You know, we've seen a lot of startups try to develop a AI firewall.

Well, we did it, right. And this goes into our normal product set. And so if you're going to try to protect LLMs, this is the place to do it, right.

You know, do you need another tool for another vendor to come in and route traffic a different way?

Nope. Leverage our global network, you know, enable this as part of kind of the platform and you're ready to go.

And I think this is something that I always think about, you know, from a vendor standpoint.

And when I've been a CISO, you know, I've been a CISO for 20 years.

And, you know, this is great that, you know, I could go to, you know, I can go to a CISO, CISO can come to me and, hey, you can enable this, you have protection.

And it's a great way to say, hey, what are you doing from a cybersecurity standpoint with LLMs?

Here's what we're doing.

Take it to the board. Like we've partnered with the right organizations that came out with the platform.

And, you know, the nice thing is this is going to be iterated.

There's going to be more news come out over the rest of the year as we continually innovate.

But this is something that when you look at, you need it in your back pocket, you have Cloudflare, you know, make sure you have it, procure it, get it in there.

And you have protection. And I think that's an amazing component of this.

Makes sense. A lot of elements of LLM specific to LLMs that brings new challenges.

So this is also trying to go there in a sense, right?

Right. And I think the other one is rate limiting. This is something we've seen out on Twitter quite a bit around, you know, like how do you, you know, rate limiting requests so it doesn't get expensive and data cost.

And I think we're seeing a lot of these things are just features, right?

We already have that capability.

And so having something that we have a lot of the tools in the toolbox already, and here we are again, right?

We're rolling out an amazing product that is, you know, something that every organization needs.

On Monday, we also mentioned how we're integrating CISO's considerations in terms of security, right?

Also important. Yeah, this is another one. You know, CISO is coordinating this year by design, you know, asking, you know, everyone to get involved.

We're participating in it, you know, we're helping shape what the industry is doing and we're leading from the front.

And I think this is another thing we talked about, who are the people that you want to work with?

And so, you know, we came out of the gate, you know, kind of swinging for the fences and, you know, two big ones on how do we change the industry?

How do we make sure that the industry is moving in the right direction?

And then, hey, here's this AI firewall that you can enable today and, you know, actually start to see mitigations occur.

And in this case, it's all about having security at play in software design.

And this reminds me of the Internet, which it was not the case that security was embedded on the Internet in the beginning.

It's really important and it was built after the first stages of the Internet.

But now, software has to think about security because we live in an Internet era, a more mature era type of Internet.

So, software has to think about those security concerns.

Where should we go next?

We also launched an AI assistant for security analytics, helping there with some machine learning perspectives, also taking leverage of our network to assist into having a better security perspective.

Yeah, I think this is, you know, this is the kind of co-pilots and how are we doing things?

How do you make this easier for people to use, right?

That's one of the good advantages of LLMs. I think that's a good kind of component.

You know, we've also seen, you know, the second one on here around, you know, phishing.

It's one of the groups that I manage kind of on the intelligence side as well as they were getting more sophisticated with our machine learning, our neural networks around phishing, right?

So, if somebody asks you for money, they still ask you for money.

It's probably a phish. It can be worded very nicely.

But then I think these are things that we start to look at. And then I think the third one is really a good one of, you know, hey, what is the behavior score of your users coming in on Cloudflare 1, right?

The Zero Trust product.

And so, you know, hey, this is a nice, it's a nice thing we're adding to the existing product and everyone should be using it.

And we also use in our own security perspective our Cloudflare 1, Zero Trust perspective and architecture.

That also helps us to understand the product and his security elements, right?


You know, this is something, you know, we have a program called Customer Zero.

It's the security team in my organization that runs this. And so, all the Cloudflare tools, you know, we use, right?

We provide feedback to product. We talk to customers and hear what they say.

We help, right? And this was something we wanted to see.

Is that a risky user? Is that not a risky user? And so, you know, there's a lot of interesting things.

And we had a blog talking about this today with one of my leaders in the organization about how we do it and what does it look like.

And I think these are great things to see. And, you know, my favorite discussions that I have with people is call us, say, how do you do this, right?

Like, you know, I don't know how, something's not working, right?

I mean, I have a customer later on this afternoon, something's not working, right?

How does it work?

Well, let me get my team on, you know, we'll walk you through the Terraform we use.

We'll walk you through how you should set it up. We'll walk you through, you know, how do we streamline, you know, DevOps in our organization.

We're very innovative.

We move very quickly. And the way we've designed and structured this internal structure is a really good way to think about how to do it.

And, you know, if we can help one customer with one thing or one little thing, yeah, I think it's an amazing thing we offer.

There's also a use case here of e-commerce websites that were targeted by a sophisticated marriage guard attack.

So that's something that people should be aware of also in that situation.

And also the rise of defensive AI in this case, right?

Yeah, right. And this is funding against next generation threats. Yeah.

And I think, you know, I think this is another one, right? When you really pick the provider, you know, the machine learning, you know, machine learning and neural networks and LLMs are all based on data.

Do you have good data? When we see 170 billion attacks a day, when we see over 20% of the unit, it allows us to do some interesting things from a defensive AI that's embedded into the products.

And so we kind of walk through how that works here at Cloudflare.

There's also a security center as a new set of capabilities in our security center, in this case also.

So some improvements. And that one, I think is one of the bigger ones.

And when you think, you know, there's a lot of tools out there that will try to triangulate your assets and give you an asset inventory.

And so, you know, one of the things that came out in the API report earlier this year was that, you know, 31% of all APIs are unknown, right?

So we're finding 31% of this. You know, when I think about it, it's how are we giving you insight?

You know, your web application firewall is not configured correctly, right?

You know, your rules aren't set up.

You know, managed rules aren't deployed. You see that only, you know, it's a small percentage.

DMARC's not set up right. These are things, right, that I always say that, hey, you know, you can protect yourself with Cloudflare.

We, you know, wonderful products.

You know, you got us on board, but you didn't implement it right.

And this is something every organization you know, goes through. And I always tell people, just because you have a product, doesn't mean it's working.

And so, this security insights dashboard is talking specifically about that.

Users that aren't using MFA, right, DMARC records, you know, is your SPF record.

You've got errors, right?

These are all things, you know, your page shield's not enabled, or term style's not enabled.

You know, these are all things that tell you about your posture.

So, and I always think, you know, every organization, you know, enables something or disables something and we forget about it, or maybe we didn't turn it on the right way.

And this is a good way to say, you know, do I have API coverage on everything and protecting?

But this is your, you know, your fail safe on, you know, my environment, the posture of my environment is good.

And I think this is a good thing to have, because that's something I've seen in every organization is often forgot about.

I have this vendor, I have that vendor, I have that vendor.

And I always ask, is it configured correctly? And the answer emphatically is no.

And so this is our answer to make that answer yes. Helping the configuration to be better too, in a sense.

And easier also, more simple, because if it's a simple dashboard, it will make the life easier, even in terms of visibility.

We also have a few other announcements following Tuesday, in terms of the week, a simpler migration from Netscope and Descaler to Cloudflare.

So we introduced Netscope and a Descaler partner update too here. And there's also protecting APIs.

Yeah, and I think that, you know, this is something kind of this, you know, the Descaler and the Descope program, I would think is interesting.

And this is one that I think near and dear, especially going through the Thanksgiving incident, right?

Like, you know, what's coming in and going out and have visibility.

And you often see, and you know, if you're listening to this call, ask yourself, you know, where are my points of the presence?

Do I have a single control plane?

Do I understand what's going on? Or is my control plane and understanding what's going on back in my SIEM, when I'm aggregating logs from different vendors, how easy or hard is that to do?

And I think these things, when you look at it, are very, you know, core to an environment.

We hear this, I talked about this earlier from a Cisco standpoint, complexity, complexity, complexity.

And so what we're trying to do here is, hey, like leverage us, you're going to see a significant cost savings, you know, in some words, we've seen 30 to 50% cost savings from consolidation.

You're seeing significant speed increases because Cloudflare Global Network is unmatched with anybody in the industry.

And, you know, when you think about the connectivity cloud, this is how we think about it.

How do you leverage us and use the technology that we've been talking about today?

You know, point solutions are, you know, something of the past, in my view, you need a couple of core security vendors and, you know, but it should be, you know, 10-ish or less and making sure you actually have good visibility because complexity is going to create problems in the environment that leads to breaches.

Absolutely. Simplicity there too, in a sense, making lives easier.

We also explain how we secure Cloudflare with Cloudflare Zero Trust Journey.

We mentioned this before, actually, the fact that we are customer zero in some of our products, including Zero Trust, right?

Yep. This is my team's blog.

I talk about how we do it, right? And so, you know, Emily is our Chief Privacy Officer.

Ankur, I think everybody knows he's been around our products and Derek Pitts is the person that runs this for me.

And we talk about how do we do this?

How do we think about it? How do we leverage it? How do we use, you know, here's right there, like selecting selectively isolated browser, right?

So, you know, there's things that you can do, you know, if there's any link, you know, we're using our Area 1 email product, any link goes to our secure browser isolation, right?

So, you know, we have our data capabilities and data loss prevention. And so, you know, we can do a lot of things and we like to talk about that.

And because, you know, I, you know, if we don't know how to do something, it's very easy for me to call Nitin, you know, our Chief Product Officer or one of his product managers.

They answer my phone. Sometimes it's hard for you all, right? And sometimes, like, I don't know how to do this and I'll call support.

And I think this is, you know, as we do more of these, how do we think about it?

You know, and this is privacy.

How do we think about, you know, privacy first? How do we think about data?

How do we think about data sovereignty? How are we building data sovereignty in the products?

And I think these things, as you look at our things and, you know, we always will take calls from people that want to understand how we do it.

Because if I can help, like I said earlier, if I can just help one person do one thing, then it's successful, right?

And so, you know, I think that's the thing.

And hopefully I can learn something from that conversation as well. And I always do and always meet new great people and friends.

And we go through this and this is kind of our customer zero blog for the week.

We also have the state of post -quantum Internet.

This is something close to heart to Koffler. We're one of the first moving on in terms of having post -quantum cryptography for the future.

And this blog post states that I think it's already two or three percent, let me check, that it's protected.

It's two percent of all TLS 1.3 connections that are Koffler are secure with post-quantum cryptography.

So that's also an important aspect for the future and present.

And I know this is something the team has been working on for a long time.

I was at a crypto conference and then Koffler, you know, Koffler has their game on this, right?

And that's another one, right? Like we're anticipating what goes on in the future and we're innovating and telling you about this, you know, how are you, how do you get quantum ready?

And well, all of our Internet and what we're doing is there.

So if you want to come in, that's something that we have this, right?

It's super interesting. Sometimes we forget about it.

I think we started talking about this a couple of years ago. I'm sure you go back and, you know, 18 months ago, 24 months ago, we were talking about that.

We were ready for this, right?

And here we are two years later, still an amazing feat to what the organization does.

Absolutely. There's also some simplicity in terms of connecting to Koffler.

Here, but more on that after. And we also on Wednesday, if I'm not mistaken, we had more perspectives in terms of VPN vulnerabilities, trying to eliminate those with Koffler one and also a more technical blog post about Linux kernel security tunnels.

Everyone should consider adopting. Any mentions you want to do here?

You know, the one that I think is to get into magic cloud networking, this one is, I think, the introduction to the Nepheli, right?

And so how do we solve, you know, multi-cloud connectivity?

And I think these things, as we go through it are very interesting.

I'll wait till we kind of get into that. But I think as you look at this, how are we, you know, the Internet's, you know, is complex and, you know, we acquired Nepheli, right?

With the largest global network in the world. You know, I often sometimes think we're the largest global ISP.

You know, that's why we talk about the connectivity cloud.

We're connecting everybody. And so the one of the pieces that we've recognized is how do we connect, you know, our enterprise customers into cloud networking environments, right?

They got large networks, everybody's using AWS GCP, but how do we connect you into that easier?

And so this acquisition of Nepheli allows us to even allow you to stream like this, right?

And so, you know, when you look at and you build out AWS and GCP and you have these, you know, complex VBCs, complex networking, you know, this is something that we talk about as software-defined networks, we do, right?

And everything we do, I think is something also, as we look at is Terraform.

And so how do you make this easier for your organization to onboard?

And so they did a good thing on trains, planes, and automobiles.

I don't know if we can say that since that was the movie, but I think, right, these are the things that we think about, you know, Nepheli.

And so for, you know, this is much more of a heavy network lift for, you know, our network fans and customers, but this allows us to connect much easier, you know, streamline how we do things.

And so, you know, it's another access. Once you, you know, kind of, you know, you kind of buy into the Cloudflare, connect anywhere, you know, running of our products.

So I think this is something that, you know, we don't talk a lot about, but I always think that's super interesting is, you know, we build our own hardware, right?

We have a whole hardware team, you know, we have one operating system that, you know, we have a team that manages it and then every piece of software runs on one server.

And so we distribute that across the entire Cloud and this starts really interesting.

And so when we do that, we embed Nepheli, you have this, you know, great capability that's embedded in every one of our 350 locations in 100 countries.

And so, you know, I think when you look at it, this just strengthens our position with how we do it.

And so this is the, you know, what we call magic cloud networking and how we connect it.

And I think this is something that, you know, how do you connect, you know, how are you the connectivity cloud if you can't, you know, be world-class and be the best at connecting to, you know, the cloud providers and here we are.

So, you know, I kind of think about we can connect anything to anywhere, anytime, and this just shows kind of the strength of what we're doing.

And, you know, here again, we talk about innovation, we acquired, you know, Nepheli, we've integrated it and built it into our platform.

And so, you know, I think this kudos to the team. It's something that I think we're all very excited about and something that everybody should pay attention to.

Makes sense. And I always amaze on how complex some of these companies today are because there's acquisitions.

You buy a company that was using a different cloud, so you need different clouds in your organization and you have to deal with all of that.

So these types of solutions really help bring together multiple cloud networks like plug and play.

Don't worry too much about it. So that's, I think it's important even as an overall vision of the network being software defined.

So it makes sense there. Yeah. And I think the other thing is you're seeing cost savings out of this, right?

Everybody wants to start connecting to these things.

Like we can provide that using CloudFlame out of the car. You know, when you go back, well, how we are faster than anybody else, because we understand how the routing on the Internet works.

It's 20% that comes through us. And so I think in these things, you start looking at it about, you know, why am I paying for something that Cloudflare can offer?

And I think that these are things that you look at it.

It's an amazing, amazing offering. It's going to get stronger and stronger and stronger with Novelia.

That was why we acquired them and something that everybody should look at.

Absolutely. Absolutely. We also had a Zero Trust warp tunneling with mask and Cloudflare treats SASE anxiety for value cloud customers.

And also this already this Thursday, how Cloudflare protects global democracy against threats from emerging technology during the 2024 voting season.

So it was super Tuesday, this Tuesday in the US, an important election event.

Yeah. And then I think there's a couple of things here, I think, that are interesting.

You know, we protect over 2,900 domains, many of these free of charge.

And, you know, I think when you, you know, the thing that everybody that works at CloudFlame says, you know, they connect to the mission of helping build a better Internet.

And, you know, when I think about things, and this is a very good thing of how are we helping people?

There's great blogs that, you know, that we've written about defending countries and things.

You know, we have Project Galileo that's looking at, you know, organizations that, you know, arts and human rights and, you know, civil society and journalism, how are we protecting?

We have the is, you know, how are we helping elections, which is what we're talking about today?

How are we making sure it's fast, reliable, and secure?

And so this is the Athena project. We also have Cloudflare for campaigns, right, of, you know, how are we helping people distribute the right information, secure information for Cloudflare?

And I think those are very key.

And even Project Pangea, which is helping route in difficult countries that, you know, may try to ban routing or try to ban Internet connectivity.

And so what we're trying to do, right, is help build a better Internet.

These are all things we do for free.

These are all things that, you know, we're not making any money on, but this is what we believe, right, in the organization is this is part of what's near and dear to Cloudflare.

When Matthew and Michelle and Lee started the organization, this is what they believe, right?

And so they still believe this today.

This is core to the foundation of what it is. And so, you know, we've even, you know, we even have the under attack program.

If you're getting attacks, we will help you for free, right?

And so, and I think these are things as we look at it, it's, you know, sometimes the Internet can be a dark place and Cloudflare's here to shine a light and help you get through what there is.

And, you know, from what we're doing in the, you know, here's a good one state and local elections and what we saw on Super Tuesday, right?

All the technology we have, we're trying to help the organization support this.

Also a mention of the meta outage this week, and also LinkedIn specifically.

So even big companies sometimes have a problem in that case.

There's no relation, as we know, in terms of cyber attack there, but things like that happen.

And you mentioned the Athenian project. Here's a jump in HTTP traffic to those zones during Super Tuesday, bot class too.

There's a bunch of things here people can explore.

Yeah. And I think these are, you know, the thing was, you know, and I kind of listed some of these on there as we went through Galileo and Athena, you know, even when you, there's a great blog and I always think it's good to watch what happened with the Hamas and Israel conflict.

And we've defended both sides of this, you know, we're defending for, you know, the good person that's trying to help.

Right. And so, you know, when we look at this, that's what project Galileo is doing, but, you know, and so there's some great articles about how cyber and some good insights about, you know, cyber attacks are occurring at the same time physical attacks are happening.

So, you know, we don't see cyber attacks there, you know, you can't see them.

We can't feel them. They don't talk about it, but, you know, because of our presence and where we stand in the world from our viewpoint and the traffic we see, we actually can see that correlation between physical attacks and cyber attacks.

And that's something that, you know, it's, we all talk about it, but, you know, the article is something that you actually can see it and watch it.

Exactly. This is a more U.S. perspective, 65 Internet properties in the U.S.

that work in voting rights and promoting free and fair elections.

But also there's an external to the U.S. element, as you were saying, like Palestine and also Israel there.

And right there, so I think we're at the 4.2 billion people are going to vote this year.

Right. So there's a big change and, you know, needy elections.

So pretty well every country is going to have something.

Right. So and, you know, politics are politics. Everybody's got a side.

And I think what we just were trying to do is promote that it's safe and secure.

Right. And making sure that those things are, you know, protected and well protected.

We also have something related to cookies, something that I really hate, to be honest, cookies on pages.

But it's all about collecting all of your cookies in one jar with PageShield Cookie Monitor.

So something to make lives easier in a sense there, too.

And free network flow monitoring for all enterprise customers and also advanced DNS protection.

Do you want to mention any specific one here? Yeah, I think you're seeing the second one, I think, is very interesting.

Free network and flow monitoring.

We're giving more tools, you know, for people to analyze what is occurring in their network.

Right. This is, you know, the observability is going to be something.

Right. As you know, you saw the Facebook outage, you see outages and, you know, some may be related to cyber, some may not be related to cyber.

But I think, right, is the thing that people are always asking is what kind of visibility do you have?

And that's something as we've come out here, there's more visibility, more intelligence that we're providing around observability.

And that has explanation how it works here for those who want to explore it.

And also this advanced DNS protection. So it's mitigating sophisticated DNS DDoS attacks.

You mentioned in the beginning how the DDoS attacks are becoming bigger and more expensive in a sense.

This is a more DNS based DDoS specific.

And that one, I always tell people you should have DNS protection.

You should have layer three, four and seven protection. And so making sure your provider can handle that.

I think this is something we're world-class in, best in areas.

And here's another example of just more capabilities we're offering to help our customers.

We also have a guide to call for pages. It turns to a plugin and also general availability of WAF content scanning for malware protection as the latest up until Thursday.

Yeah. And one thing I will say, and there's been a lot of press on turnstile, but if you're not using turnstile, if you don't know turnstile, it's a great mitigating factor to stop rapid attacks.

And so this was our better version of what CAPTCHA is. And so something that we often recommend, I always tell people like, look at turnstile enable.

And if you're getting the scripts attacks, this helps mitigate that. And it's something that's very simple.

And so I think it's wildly better than CAPTCHA. And it's something we've seen, we've had to build because we've needed it during things.

And it's a world-class product. It's very simple. I always think it's very simple and embedded into the page and it works great.

And this may stop many attacks.

And I think this is what I always think, I always tell people secure the Internet.

Well, what does secure the Internet mean? Like secure the Internet, this includes turnstile, includes DOS protection, DNS 347, API protection, WAF protection, all of these things, API protection, making sure you have a provider that can do this, you enable it.

We just saw, hey, well, what are we gonna do for AI firewall?

Do I wanna route LLM traffic a different way on the Internet so a vendor can see it?

Nope. Pick a provider that can do this. You saw the scale. You're growing as we're growing.

We're anticipating where the threats are coming from.

The product team, the engineering team does a fabulous job on this. And here's another one.

It's another tool that I often have calls with customers and you have turnstile and they don't know.

We didn't know about it. Here you go. Let's get it in and protect you.

And I think nobody wants and loves CAPTCHA. They hate it.

So it's good to have a process there of ending it in a sense. We have blog posts for this Friday.

If you want to highlight some, one is blog explorer, monitor security events without third -party storage specifically.

And we also have a network performance update for those who want to see how we perform in terms of the networks in the world.

And we also launched a new version of Golfers URL scanner for people to want to see if URLs are secure to visit.

So that's in terms of security also important.

And I think you heard me talk about observability, more observability, more understanding.

We're putting more of that in the products. I think that's great.

And I think that's a very key component to what we're doing. So I think again, keep asking us for new things.

It's something that we love to hear.

We build it. And that's something I always think that the product team, the engineering team delivers.

We get the right ideas, we build it. We get the right ideas, it's built.

And so you see it and it's not, we'll wait 18 months. I've seen things built in a month, two weeks.

I think one of the coolest things, I was super proud of the team that did the HAR sanitizer.

So it was an open source project.

It was two days, 48 hours. The team came out, open sourced the HAR sanitizer so that if you upload HAR files, there's no session information.

And so those things like that, it's just an organization I've never seen be able to produce that.

It would have taken most organizations months to do it. And I saw requirements when we brought this up within hours and engineering already working on it.

So those are things that you think if you get good ideas, they deliver.

And I think the log collection, log storage explorer that we've talked about, we've heard a lot of people saying we use a lot of Cloudflare products.

We use everything we have.

Most of the data comes from you. Can you help us store it, right?

Instead of back all this into SIM. And so this is our first view on getting a much better aggregation platform that allows you to look at logs.

Also Friday, we have protocol detection with Cloudflare gateway.

And also we're introducing requests for information and priority intelligence requirements for threat intelligence teams.

So this will be in our security center specifically. So a new addition to the security center there.

Also on Friday, we launched email security insights on Cloudflare radar, a project close to heart.

So people can see a new email security section on radar, including TLDs, the most dangerous, let's call it like that, TLDs.

And also we have a lava lamps entropy randomness blog post. So harnessing chaos in Cloudflare offices.

A lot of people know Cloudflare because of our lava lamp wall in our San Francisco office.

But several people don't know that we also have an entropy wall of sorts in Austin, our office in Austin, and also in our office in London, a double pendulum chaotic perspective.

And those elements bring entropy that is captured, and we put that into cryptography and it's used in our security in a sense.

Yeah, I think that one, people love, I always hear everybody loves the lava lamps, but this is another just cool, geeky, fun thing, looking at entropy in different locations.

So now if you're in London, you're in Austin, you're in San Francisco, you can see it, right?

Especially come into the office, meet the team.

We do a lot of VBCs in these locations, get a picture. And so a lot of times I'll go on these meetings and they'll want a picture of us in San Francisco with a lava lamp.

And so now we have more things and an even better story to talk about how we're doing encryption.

And it's just cool, right? It's just cool. So I think those are things that's there.

That's probably, that's the geekiest, coolest blog I think we've written this week, because it's just, the human interest side of this is just cool, right?

Everybody can relate to it. It is. And it's visual in terms of making something that is not that visual, which is cryptography, and then crucial for the security of the Internet, a little bit more fun and relatable.

So it goes along to the Kloffler history also there. Before we go, any feedback you got from customers or a final message you want to share with our audience?

Yeah. I've talked to a lot of customers this week, and I think the thing that people are always blown away is how much we are able to produce and how we're staying ahead of the game.

So we're hearing a lot more on observability of networks and fine tuning, and we saw a lot of changes this week.

AI, and I think about AI and how are we using and protecting AI, how are we protecting LLMs?

And here again, we're the first in the market, if not the first in the market with an AI firewall that can scale infinitely within our platform.

So it's something that's there.

And so what I was thinking, I look at this and the secret sauce, the Klofflers, we innovate, we build, we engineer, and we do those things.

And I think you're seeing this big, amazing organization, still have the fundamental products that we started with of innovating.

You're seeing well-rounded products with observability, and you're just seeing this great mission for what Kloffler is helping build a better Internet.

So you're seeing things with the voting and the elections that we're trying to make an impact on the world.

I have a five-year-old and he told me that when he grows up, he wants to change the world.

And so I don't know where he learned that from, but here, right, I should tell daddy and what Kloffler is doing is changing the world.

And you're seeing that firsthand and kudos to our founders, Matthew and Michelle, of what they've been able to do because everybody relates to that.

And I think that's just such an amazing component of, we're making the Internet a better place and that's what we do.

And you're seeing it this week and you're seeing the innovation, you're seeing creativity out of an organization, and you're seeing some M&A activity out of us, but it's part of our innovation cycle of augmenting things that were already exceptional, what we do.

So I think people are very excited to see this and the amount of work that's been put on, kudos to everybody that's worked on this inside of Kloffler.

There's been a lot of work to produce all these blogs. I think there's 37, I think is the number, the products that have been released.

And so it's just a substantial component.

And for everybody's listening, take a look at the blogs.

I think they're very good. They're pretty quick. We're here to help, right? And I think that's something there.

Got questions, let us know. We're excited about Kloffler.

We've got a new background this week for security week, which I think is cool.

And for this week in that. And so these are all things that I think are just cool as we kind of round out this week.

Absolutely. And amazing work from all of the teams at Kloffler putting this amazing week together.

So kudos and thank you to all of them.

And as you were saying, anyone can see all of the blog posts in our blog.

So stay tuned there. And also the Kloffler TV segments. Thank you, Grant.

This was great. And we did a sum up of security week. Wonderful. Thank you all.

And that's a wrap. That's it for this week.

And sorry for my voice during the show. I'm a bit under the weather.

Before we go, here are some of the images that were used in our almost 40 blog posts of the week made by our amazing design team, Carol Linder and Gilles Lazard.

And also some moments from our International Women's Day celebration in our London office.

See you next week. So Hi, everyone.

This is Michelle Zatlin, one of the co-founders of Kloffler. Happy International Women's Day.

Thank you to all the women around the world who inspire me and all the men who support us.

Let's continue to inspire inclusivity every single day.

And that's a wrap.

Thumbnail image for video "This Week in Net"

This Week in Net
Tune in for weekly updates on the latest news at Cloudflare and across the Internet. Check back regularly for updates. Also available as an audio podcast!
Watch more episodes