Cloudflare’s EmDash sharpens WordPress fault lines
That framing drew a sharp rebuttal from WordPress co-founder and Automattic chief executive Matt Mullenweg, who argued that EmDash is not truly in WordPress’s tradition because WordPress can run ...
WAFPlanet Blog
Insights, tutorials, and news about Web Application Firewalls and application security.
The Agentic Web is coming—and sooner than you think: Dr. Tom Leighton, Co-founder & CEO, Akamai
Dr. Tom Leighton, Co-founder and CEO of Akamai, envisions a web that is distributed, agent-driven, and edge-powered—and warns that AI's expanding threat landscape could reshape the internet within a decade.
Cloudflare 2026 Threat Report: Attackers Shift from Breaking In to Logging In
Cloudflare's inaugural 2026 Threat Report reveals attackers are shifting from breaking in to logging in. AI lowers the barrier for sophisticated attacks, DDoS hits 31.4 Tbps, and nation-state actors pre-position inside critical infrastructure. 230 billion threats blocked daily.
Forbes: WAFs Are Broken and Everyone Knows It
Forbes argues WAFs are broken because security teams are afraid to touch the rules. Huskeys launches with $8M to build a control plane on top of existing WAF infrastructure. The management layer is the real problem, not the firewalls themselves.
Sucuri Mitigates DDoS Attack on Paris Infrastructure
Sucuri disclosed a DDoS attack targeting its Paris region infrastructure on April 2. The attack disrupted at least one media publisher. Sucuri contained the incident within 45 minutes, but attribution remains unknown.
Cloudflare Launches EmDash CMS With Sandboxed Plugin Security
Cloudflare released EmDash, an open-source CMS with sandboxed plugin security. The architecture is solid, but the ecosystem gap with WordPress is vast. The real impact may be pushing WordPress toward better plugin isolation.
Huskeys Exits Stealth With $8M to Fix WAF Management Using Agentic AI
Huskeys exits stealth with $8M seed funding for an agentic AI platform that sits on top of existing WAFs. The thesis: WAF enforcement works, but nobody can manage the rules at scale. Early customers include TikTok and Hugging Face.
Where AI Labs Will and Won't Disrupt Cybersecurity
AI labs are pushing into application security, but three structural barriers keep them out of runtime protection, proprietary threat intelligence, and SOC workflows. WAFs are safe for now. Here is what RSAC 2026 revealed.
DDoS pressure rewrites cyber defence
DDoS attacks surged 150% in H2 2025. Gcore reports 1.3 million attacks in Q4 alone. Cloudflare mitigated 47.1 million over the year, peaking at 31.4 Tbps. Attack durations under 60 seconds make manual response useless.
SecureIQLab WAAP 5.0 Will Test AI-Powered WAF Defenses With AI-Powered Attacks
SecureIQLab today announced that its SOCx AI-Driven Cloud Security Validation Platform has integrated AI Security CyberRisk Validation as its fourth active methodology, joining Advanced Cloud Firewalls (ACFW),
Hosting.com Bundles Cloudflare WAF Into AI-Ready Hosting Platform
Cloudflare, AMD, and WebPros collaborate to build an AI hosting stack, combining cloud infrastructure, processors, and hosting tools for scalable AI deployment.
Hybrid Mesh Firewalls Compared: Check Point, Fortinet, and Cisco
Gartner formalized the hybrid mesh firewall category in 2025. Check Point, Fortinet, and Cisco are the three vendors leading the space. Here is how they compare and what it means for WAF buyers.