This Week in NET

This is a special episode of “This Week in NET” dedicated to the recent Okta compromise, which has been making headlines and affecting Okta and its customers, including Cloudflare. Since it's October 31, 2023, we're also sharing some Halloween stories. João Tomé is joined by Sourov Zaman, our Incident Response Manager, to discuss how Cloudflare discovered and mitigated another Okta compromise.
We also provide general advice to companies on how to avoid compromises after security breaches and vulnerabilities, even when they stem from vendors. We explain how we ensured that no Cloudflare customer information or systems were impacted by this event, thanks to the real-time detection and swift actions taken by our Security Incident Response Team (SIRT). Our Zero Trust security posture and the use of hardware keys played a vital role.
Furthermore, we delve into how Cloudflare swiftly introduced a HAR Sanitizer tool, available to everyone at no cost, not just our customers. This tool was developed to enhance the security of HAR sharing and was introduced as a response to the recent Okta breach.
You can check the mentioned blog posts:

How Cloudflare mitigated yet another Okta compromise
Introducing HAR Sanitizer: secure HAR sharing

Cloudflare's Security Incident Response Team is hiring.

Show Notes

This is a special episode of “This Week in NET” dedicated to the recent Okta compromise, which has been making headlines and affecting Okta and its customers, including Cloudflare. Since it's October 31, 2023, we're also sharing some Halloween stories. João Tomé is joined by Sourov Zaman, our Incident Response Manager, to discuss how Cloudflare discovered and mitigated another Okta compromise.

We also provide general advice to companies on how to avoid compromises after security breaches and vulnerabilities, even when they stem from vendors. We explain how we ensured that no Cloudflare customer information or systems were impacted by this event, thanks to the real-time detection and swift actions taken by our Security Incident Response Team (SIRT). Our Zero Trust security posture and the use of hardware keys played a vital role.

Furthermore, we delve into how Cloudflare swiftly introduced a HAR Sanitizer tool, available to everyone at no cost, not just our customers. This tool was developed to enhance the security of HAR sharing and was introduced as a response to the recent Okta breach.

You can check the mentioned blog posts:

Cloudflare's Security Incident Response Team is hiring.

What is This Week in NET?

This Week in NET is Cloudflare’s weekly roundup exploring the Internet’s past, present, and future. Hosted by João Tomé with expert guests, it shares insights that matter to developers, businesses, and Internet enthusiasts alike.

Follow us on X: @CloudflareTV and @Cloudflare
Read our blog posts at blog.cloudflare.com
Watch our full video library at cloudflare.tv/ThisWeekInNet