Cloudflare has launched a new system with the aim of improving website security. It is an early warning system for malicious scripts that allows you to protect a web page from malicious JavaScript-based attacks such as Magecart. One more feature that allows us to add an extra layer of security to our pages and thus prevent possible intruders from carrying out their attacks.
Cloudflare launches a new web security system
It should be noted that one of the most common methods cybercriminals use to attack a website is to sneak malicious JavaScript and redirect users to dangerous websites, which have been created exclusively to attack, to carry out attacks Phishing and steal passwords, exploit vulnerabilities or collect any type of information.
Generally, to achieve this they will have to add JavaScript code through a file that they control or compromise an existing script. In both cases they could seriously damage the security of that website.
To try to reduce this problem, Cloudflare has launched its new security system to protect web pages. When JavaScript is loaded from an external location as a dependency, in many cases it goes unnoticed for a long time, especially when there are no external changes to the user experience of a site.
An example of this that we mentioned is the Magecart attacks. They leak malicious JavaScript and can steal bank card details without raising suspicions. Users do not notice anything strange. Cloudflare’s new feature, which they have dubbed Page Shield , detects attacks on end-user browsers caused by malicious JavaScript dependencies.
From Cloudflare they indicate that their mission is to help build a more secure Internet. This extends to end-user browsers, where they have seen an alarming increase in attacks in recent years. With Page Shield, they hope to help applications detect and mitigate these attacks and keep their users’ confidential information safe.
Monitoring tool to alert Cloudflare
With Page Shield, Cloudflare is creating a monitoring tool that is capable of alerting when a visitor executes a JavaScript dependency file in their browser when visiting a protected website. There are many threats that affect a web page.
Cloudflare, thanks to these reports, will create a history of the known scripts used on the site. In case it detects a new one, it would notify the administrator of that page so that it can carry out some action and protect the security as soon as possible.
Therefore, thanks to this active monitoring function, the administrators of a website could detect malicious JavaScript files that visitors can load on a page and be able to quickly and easily know if it is something malicious.
Keep in mind that this tool will not protect existing files that may have been modified. For this reason, it is important to maintain the security of a web page at all times, update all the components and not make any mistakes.