internet company cloudflare said in a statement Thursday that a group of sophisticated hackers attempted to penetrate deep into its global network late last year, but was thwarted.
The company did not reveal the identity of the hacker, but said in a blog post that it discovered the intruder on Nov. 23 and removed it the next day. The spies were able to access “some documents and a limited amount of source code,” but Cloudflare said the operational impact of the breach was “very limited.”
“Based on our collaboration with industry and government colleagues, we believe this attack was carried out by a nation-state actor intent on gaining persistent and pervasive access to Cloudflare's global network.”
Cloudflare asked cybersecurity firm CrowdStrike to help remediate the breach, and the company said it confirmed the last evidence of “threat activity” was left on November 24.
CrowdStrike did not immediately respond to a request for comment. The FBI and U.S. cyber watchdog agency Cisa also did not immediately respond to messages seeking comment.
Read: TikTok joins African peering community, NAPAfrica surpasses 4Tbit/s
Cloudflare provides a suite of web and application services, including content delivery and network protection. Much of the Internet relies on the San Francisco-based company to deliver its web content to users, so any disruption to the company's network could have serious ramifications. — Raphael Sutter, (c) 2024 Reuters
