Security company Proofpoint released a report on August 4, stating that numerous hackers have been misusing Cloudflare’s free trial services.
These attackers exploit the tunnel service provided by Cloudflare to transmit malicious content, benefiting from its anti-reconnaissance features.
The tunnel technology is akin to SSH, enabling remote access to local network data.
Cloudflare’s “TryCloudflare” free trial service allows hackers to register multiple accounts and use one-time tunnel services, frequently changing their subnet domain names to obscure their actual server locations.
Proofpoint noted that they have been monitoring the misuse of TryCloudflare tunnels by hackers since 2023, and such activities are becoming increasingly prevalent. Hackers often use these tunnels to deploy malicious Trojans and distribute phishing emails.
Researchers highlighted that some hackers also use Python scripts and other technologies like WebDAV and SMB to exploit network vulnerabilities, allowing them to install Trojans directly on victims’ devices.
Consequently, Cloudflare’s tunnel service has inadvertently become a “protective shield” for these malicious actors.
Keep visiting for more such awesome posts, internet tips, and lifestyle tips & remember we cover,
“Everything under the Sun!”
Follow Inspire2rise on Twitter. | Follow Inspire2rise on Facebook. | Follow Inspire2rise on YouTube