: Cloudflare blocks cyberattack on Brazil facility

Cloudflare has confirmed that it was hacked last year as part of a larger breach of digital identity provider Okta. However, the company notes that all attempts made by the hackers to gain access to the data center’s console were unsuccessful.

According to a blog post published on Thursday, the hackers used data obtained in the Okta breach to access Cloudflare’s internal wiki, which uses Atlassian Confluence, and its bug database, which runs on Atlassian Jira, on November 14.

The blog notes, “they then returned on November 22 and established persistent access to our Atlassian server using ScriptRunner for Jira, gained access to our source code management system (which uses Atlassian Bitbucket), and tried, unsuccessfully, to access a console server that had access to the data center that Cloudflare had not yet put into production in São Paulo, Brazil.”

To prevent future attempts by hackers, Cloudflare has returned the equipment in Brazil's data center to the manufacturers. “The manufacturers’ forensic teams examined all of our systems to ensure that no access or persistence was gained. Nothing was found, but we replaced the hardware anyway,” according to the blog.