ADVERTISEMENT

Critical Cloudflare flaw allowed hackers to reach web servers directly

A massive blind spot in Cloudflare’s security recently left millions of servers exposed to a critical zero-day exploit. White-hat hackers found a way to bypass the Web Application Firewall (WAF) and access private data by exploiting HTTPS certificate renewals.

Cloudflare bug

Image by Cybernews.

Ernestas Naprys
Ernestas Naprys Senior Journalist
Jan 21, 2026 Updated: 21 January 2026 2 min read
Has my data been leaked?
Jurgita Lapienyte justinasv Izabele Pukenaite vilius Ernestas Naprys Gintaras Radauskas
Don't miss our latest stories on Google News. Add us as your Preferred Source on Google
Add us as your Preferred Source on Google.
ADVERTISEMENT

The flaw is patched – no action necessary

cloudflare-bug

ADVERTISEMENT