Posted 2/1/2024, 8:53:09 PM
Cloudflare Suffers Data Breach By Suspected Nation-State, Internal Systems Accessed But No Customer Data Impacted
- Cloudflare's internal systems were breached by a suspected nation-state attacker who stole auth tokens from a previous Okta breach
- Attacker gained access on Nov 14, reconnoitered systems, then returned on Nov 22 and established persistent access
- Hacker accessed Confluence wiki, Jira bug tracking, and Bitbucket source code management
- Cloudflare detected attack on Nov 23, severed access on Nov 24, began investigation on Nov 26
- Attack did not impact Cloudflare customer data/systems, services, network, or configurations