/plushcap/analysis/cloudflare/keeping-our-users-safe

Keeping our users safe

What's this blog post about?

Cloudflare emphasizes the importance of account security and highlights that attackers often exploit weak credentials or credential theft to gain access. The company advises users to change their passwords promptly if they suspect unauthorized access, as reusing the same credentials across multiple sites can lead to account compromises even years after a breach has occurred. Malicious software such as browser extensions and phishing emails are also common methods used by attackers to steal sensitive data. Cloudflare stores user passwords using complex, salted hash algorithms and ensures that API keys are unique and stored in secure databases. The company is working on improving its API security with features like CAPTCHA protection for API keys and exploring options like scoped API keys and token types. Users can also take steps to enhance their account security by enabling two-factor authentication, regularly updating browser extensions, and being cautious when clicking links in emails.

Company
Cloudflare

Date published
Feb. 16, 2018

Author(s)
Marc Rogers

Word count
2182

Language
English

Hacker News points
None found.


By Matt Makai. 2021-2024.