Millions of Sites Using CloudFlare Have Sensitive Data Exposed
A security vulnerability in CloudFlare, a content delivery network, has caused severe security risks after exposing private session keys and sensitive data.
Dubbed Cloudbleed, the vulnerability affected big-name websites on the CloudFlare network and mobile apps as well.
Cloudbleed is a flaw in the CloudFlare infrastructure service that leaked private information. CloudFlare is a proxy between user and web server, caching content for sites and parsing content through edge servers for optimization and security.
A buffer overflow issue with the edge servers returned memory containing private data including HTTP cookies, authentication tokens, and HTTP POST bodies. Some of the leaked data was ever cached by search engines.
This allowed people looking for it to find private messages from dating sites and chat services, online password manager data, hotel bookings, HTTPS requests, IP addresses, cookies, passwords, keys, data and more. None of the information was encrypted due to the flaw.
CloudFlare patched the issue but did not inform customers, instead Project Zero released the information after its seven-day policy for actively exploited attacks.
Return To Article
