Skip to content

Security Experts Warn Against Threat Actors Abusing Cloudfare Tunnels

Posted by: GuidePoint Security

< 1 min read

August 9, 2023 – Published on Digital Information World

A new security warning has been issued where experts claim hackers are now resorting to the abuse of Cloudfare Tunnels. It’s being done to establish secure HTTPS connections through devices that are compromised.

This includes bypassing any secure firewalls in place and ensuring there’s a persistence of the long-term actions arising as we speak.

The method is not quite new but as unveiled by Phylum at the start of the year, this is alarming because threat actors are making malware-infused PyPI packages that utilize Cloudfare Tunnels so that data can be stolen or attained access to via remote means.

It seems like a greater number of threat actors are making use of this strategy as pointed out by GRIT teams from GuidePoint’s report that was issued last week. It called for more regulation after a rise in this behavior.

For those individuals that might not quite be aware, CloudFare terminals are one of the most popular forms laid down by Cloudflare where users may establish the most secure connectivity links through outbound means only that reach the Cloudflare network via apps or other kinds of web servers.

Read More HERE.

Categories: Incident Response & Threat Intelligence News
Tags:GRIT

GuidePoint Security

Tunnel Vision: CloudflareD AbuseD in the WilD
Introduction Across the cybersecurity community, defenders are constantly finding threat actors using novel and innovative techniques to further their exploitation […]
View Page

Related Articles

View All

  • GRIT Blog
Tunnel Vision: CloudflareD AbuseD in the WilD
Posted by: Nic Finn
Published 08/03/23, 04:33pm
Read More 10 min read
GuidePoint Research and Intelligence Team
Read More < 1 min read
  • Incident Response & Threat Intelligence
Threat Intelligence Advisory Services
Read More < 1 min read