Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

AI Agents Now Rank With the Top 3 Hacking Teams: Chema Alonso

Mar 27, 2026 By Cloudflare In Cloudflare
In this episode of This Week in NET, host João Tomé is joined by Chema Alonso, Vice President and Head of International Development at Cloudflare. Chema shares how a 1998 paper on SQL injection launched his career in hacking, his path from running a startup in Madrid to becoming a Microsoft MVP for 14 years, and how he ended up leading cybersecurity at Telefónica for more than a decade — after telling them “you don’t have enough money to make me work for you.” He also explains why he left Telefónica in 2025 to join Cloudflare, and what surprised him about the company’s technical depth.
View Video

Advanced Certificate Manager: Essential TLS Control for Regulated Industries

Mar 25, 2026 By Cloudflare In Cloudflare
Get full, granular TLS control with Cloudflare Advanced Certificate Manager (ACM). While every Cloudflare account includes free basic TLS, complex and highly-regulated businesses, like technology, financial services, or healthcare, need more granular control, and ACM eliminates the manual overhead of managing certificates. Key Features Include: Helpful Links & Resources.
View Video
cloudflare

Standing up for the open Internet: why we appealed Italy's "Piracy Shield" fine

Mar 16, 2026 By Patrick Nemeroff In Cloudflare
At Cloudflare, our mission is to help build a better Internet. Usually, that means rolling out new services to our millions of users or defending the web against the world’s largest cyber attacks. But sometimes, building a better Internet requires us to stand up against laws or regulations that threaten its fundamental architecture.
Read Post
cloudflare

Announcing Cloudflare Account Abuse Protection: prevent fraudulent attacks from bots and humans

Mar 12, 2026 By Jin-Hee Lee In Cloudflare
Today, Cloudflare is introducing a new suite of fraud prevention capabilities designed to stop account abuse before it starts. We've spent years empowering Cloudflare customers to protect their applications from automated attacks, but the threat landscape has evolved. The industrialization of hybrid automated-and-human abuse presents a complex security challenge to website owners.
Read Post
cloudflare

AI Security for Apps is now generally available

Mar 11, 2026 By Liam Reese In Cloudflare
Cloudflare’s AI Security for Apps detects and mitigates threats to AI-powered applications. Today, we're announcing that it is generally available. We’re shipping with new capabilities like detection for custom topics, and we're making AI endpoint discovery free for every Cloudflare customer—including those on Free, Pro, and Business plans—to give everyone visibility into where AI is deployed across their Internet-facing apps.
Read Post
cloudflare

Complexity is a choice. SASE migrations shouldn't take years.

Mar 9, 2026 By Warnessa Weaver In Cloudflare
For years, the cybersecurity industry has accepted a grim reality: migrating to a zero trust architecture is a marathon of misery. CIOs have been conditioned to expect multi-year deployment timelines, characterized by turning screws, manual configurations, and the relentless care and feeding of legacy SASE vendors. But at Cloudflare, we believe that kind of complexity is a choice, not a requirement. Today, we are highlighting how our partners are proving that what used to take years now takes weeks.
Read Post
cloudflare

Active defense: introducing a stateful vulnerability scanner for APIs

Mar 9, 2026 By John Cosgrove In Cloudflare
Security is traditionally a game of defense. You build walls, set up gates, and write rules to block traffic that looks suspicious. For years, Cloudflare has been a leader in this space: our Application Security platform is designed to catch attacks in flight, dropping malicious requests at the edge before they ever reach your origin. But for API security, defensive posturing isn’t enough. That’s why today, we are launching the beta of Cloudflare’s Web and API Vulnerability Scanner.
Read Post
cloudflare

Fixing request smuggling vulnerabilities in Pingora OSS deployments

Mar 9, 2026 By Edward Wang In Cloudflare
In December 2025, Cloudflare received reports of HTTP/1.x request smuggling vulnerabilities in the Pingora open source framework when Pingora is used to build an ingress proxy. Today we are discussing how these vulnerabilities work and how we patched them in Pingora 0.8.0. The vulnerabilities are CVE-2026-2833, CVE-2026-2835, and CVE-2026-2836. These issues were responsibly reported to us by Rajat Raghav (xclow3n) through our Bug Bounty Program.
Read Post

Copyright © 2026 OpsMatters™. All rights reserved.