Uncovering the HTTP/2 Zero-Day vulnerability, and Israel-Gaza Internet patterns

In this week's program, João Tomé is joined by two Cloudflare guests based in Texas (US) and London (UK): John Engates (Field CTO) and Lucas Pardue (systems engineer and HTTP expert). The main focus is explaining what the recently discovered HTTP/2 Zero-Day vulnerability is, its significant impact on the Internet at large (resulting in never-before-seen DDoS attacks), and how Cloudflare’s customers are already protected.

Next, two other vulnerabilities are highlighted: the Atlassian Confluence CVE-2023-22515 and the hidden WebP vulnerability, which has more significant implications than originally anticipated.

We also delve into some Internet traffic patterns from Israel and the Gaza Strip after a conflict in the region was ignited by the October 7 Hamas attack.

Cloudflare is also celebrating its inclusion as a Top 100 Most Loved Workplace, according to Newsweek. We also explain why the general availability of the Magic WAN Connector makes life easier for large customers.

If you enjoy technical deep dives, this “Virtual networking 101 (https://blog.cloudflare.com/virtual-networking-101-understanding-tap/) ” blog is about the intricacies of tap devices (a virtual network interface that looks like an ethernet network card) and how they are being used for virtual machines, reversing their original purpose.

Last but not least, we premiere our short segment “Ask the CTO”, with John Graham-Cumming answering audience questions.

You can check the mentioned blog posts:

• HTTP/2 Zero-Day Vulnerability Results in Record-Breaking DDoS Attacks (https://blog.cloudflare.com/zero-day-rapid-reset-http2-record-breaking-ddos-attack/) 
• HTTP/2 Rapid Reset: deconstructing the record-breaking attack (https://blog.cloudflare.com/technical-breakdown-http2-rapid-reset-ddos-attack/) 
• Uncovering the Hidden WebP vulnerability: a tale of a CVE with much bigger implications than it originally seemed (https://blog.cloudflare.com/uncovering-the-hidden-webp-vulnerability-cve-2023-4863/) 
• All Cloudflare Customers Protected from Atlassian Confluence CVE-2023-22515 (https://blog.cloudflare.com/all-cloudflare-customers-protected-atlassian-cve-2023-22515/) 
• Cloudflare's a Top 100 Most Loved Workplace for the second consecutive year in 2023 (https://blog.cloudflare.com/cloudflares-a-top-100-most-loved-workplace-for-2023/) 
• Internet traffic patterns in Israel and Palestine following the October 2023 attacks (https://blog.cloudflare.com/internet-traffic-patterns-in-israel-and-palestine-following-the-october-2023-attacks/) 
• Announcing General Availability for the Magic WAN Connector: the easiest way to jumpstart SASE transformation for your network (https://blog.cloudflare.com/magic-wan-connector-general-availability/)  \n\nWatch at https://cloudflare.tv/event/zv9VXzaQ