Cloudflare celebrates the 11th anniversary of its iconic free cybersecurity program Galileo
Cloudflare commemorates the 11th anniversary of Project Galileo, its flagship initiative delivering free cybersecurity protection to at‑risk public‑interest organizations across the globe.
Since launching in June 2014, the program has defended journalists, human‑rights groups, independent media, environmental activists, and others working on the frontlines of democracy, civil society, and environmental justice.
Highlights of Project Galileo's Eleventh Year:
An interactive Cloudflare Radar report providing insights into the cyber threats faced by at-risk public interest organizations protected under the project.
An expanded commitment to digital rights in the Asia-Pacific region with two new Project Galileo partners.
New stories from organizations protected by Project Galileo working on the frontlines of civil society, human rights, and journalism from around the world.
Tracking and reporting on cyberattacks with the Project Galileo 11th anniversary Radar report
To mark Project Galileo's 11th anniversary, Cloudflare published a new Radar report that shares data on cyberattacks targeting organizations protected by the program. It provides insights into the types of threats these groups face, with the goal of better supporting researchers, civil society, and vulnerable groups by promoting the best cybersecurity practices. Key insights include:
A growing trend in DDoS attacks against these organizations, becoming more common than attempts to exploit traditional web application vulnerabilities.
Between May 1, 2024, to March 31, 2025, Cloudflare blocked 108.9 billion cyber threats against organizations protected under Project Galileo. This is an average of nearly 325.2 million cyber attacks per day over the 11-month period, and a 241% increase from our 2024 Radar report.
Journalists and news organizations experienced the highest volume of attacks, with over 97 billion requests blocked as potential threats across 315 different organizations. The peak attack traffic was recorded on September 28, 2024. Ranked second was the Human Rights/Civil Society Organizations category, which saw 8.9 billion requests blocked, with peak attack activity occurring on October 8, 2024.
Cloudflare onboarded the Belarusian Investigative Center, an independent journalism organization, on September 27, 2024, while it was already under attack. A major application-layer DDoS attack followed on September 28, generating over 28 billion requests in a single day.
Many of the targets were investigative journalism outlets operating in regions under government pressure (such as Russia and Belarus), as well as NGOs focused on combating racism and extremism, and defending workers' rights.
Tech4Peace, a human rights organization focused on digital rights, was targeted by a 12-day attack beginning March 10, 2025, that delivered over 2.7 billion requests. The attack saw prolonged, lower-intensity attacks and short, high-intensity bursts. This deliberate variation in tactics reveals a coordinated approach, showing how attackers adapted their methods throughout the attack.
The full Radar report includes additional information on public interest organizations, human and civil rights groups, environmental organizations, and those involved in disaster and humanitarian relief.
The dashboard also serves as a valuable resource for policymakers, researchers, and advocates working to protect public interest organizations worldwide.
Global partners are the key to Project Galileo's continued growth
Partnerships are central to the success of Project Galileo. Cloudflare relies on a network of 56 trusted civil society organizations around the world to identify and support groups that would benefit from its cybersecurity protection. With the help of these partners, the company continues to expand its reach, delivering vital tools and resources to communities most in need of digital defense.
Continuing Support for Vulnerable Groups Worldwide
In 2025, many of Cloudflare's Project Galileo partners have faced significant funding cuts, impacting their ability to support communities, defend human rights, and uphold democratic values.
Amid these financial and logistical challenges, maintaining protection for these essential services has become more critical than ever. Cloudflare expresses gratitude to its civil society partners who continue to play a vital role in identifying at-risk organizations in need of support.
Together, they are working toward a more secure, resilient, and open Internet for all.
To learn more about Project Galileo and its global impact, visit cloudflare.com/galileo. Project Galileo case studies can be found here.
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Zawya
2 hours ago
- Zawya
Social media scams put users' data at risk, Kaspersky warns
Kaspersky experts warn of a wave of scams using social engineering and phishing techniques on social media and messaging apps to steal credentials and distribute malware. Taking advantage of the popularity of platforms such as WhatsApp, Facebook, Instagram, X, Telegram, and TikTok, cyber attackers are creating fake pages that mimic legitimate websites and promise everything from account verification to benefits like free followers or premium features. This situation is especially worrying considering the high level of digital exposure users face today. Over the past year, Kaspersky has identified multiple fraudulent campaigns employing sophisticated tactics and widely recognized platforms to execute their attacks. These scams operate in a variety of ways, but they all have a common goal: to obtain users' credentials or install malicious software on their devices. Below are examples of such schemes. Fake verification pages: Users were led to websites mimicking WhatsApp and other app's official interfaces. These fraudulent pages ask users for their phone number and the verification code received via SMS. With this information, cyber attackers could access accounts, take full control, and perform actions such as impersonating them, sending messages in the victim's name, or accessing confidential information. Promises of free followers: Fraudulent pages offered to boost users' digital popularity on platforms like Instagram by supposedly giving away followers. However, to access the benefit, victims had to voluntarily enter their login credentials. This strategy allows cyber attackers to take control of accounts, use them to spread further scams, or even sell them on dark markets. Example of a fraudulent website on Instagram Fake shops on TikTok: This social network has also been the target of targeted attacks, especially through its TikTok Shop feature, which allows sellers to directly associate products with posted videos, making them easier to purchase. Taking advantage of this functionality, cybercriminals created fake sites that simulate being part of TikTok Shop, with the aim of stealing sellers' credentials. Example of a fake Tik Tok page Fake security notifications: Cybercriminals sent alerts pretending to be from Facebook and similar platforms' security teams, warning of suspicious activity on the user's account. Through these notifications, they directed victims to phishing forms requesting their credentials. Once entered, the attackers could take control of personal profiles or manage pages, using them for scams, spreading malicious content, or extortion. These situations reflect the real risks associated with using social media: exposure of personal data, loss of control over accounts, dissemination of false information, and threats to privacy. Despite the increase in these types of threats, users are not defenseless. With increased awareness, good cybersecurity practices, and the use of reliable protection tools, it is possible to significantly reduce the risk of falling victim to these scams. 'Social media and communication apps have become a part of our lives, but with their popularity comes cyber risks. With the rise of artificial intelligence-based tools, scams can be more believable and personalized than ever. Therefore, it is key to maintain cybersecurity awareness, develop critical thinking, and use robust cybersecurity solutions,' comments Seifallah Jedidi, Head of Consumer Channel for META at Kaspersky. In celebration of World Social Media Day, Kaspersky experts recommend the following practices to reduce risks: Don't click on suspicious links, especially those promising unbelievable offers, benefits, or services. These often lead to phishing sites where sensitive information such as passwords or banking details is stolen. Always verify the authenticity of the sender and the content before clicking. Be careful what you share: Information like pet names, important dates, or locations can be used by cyber attackers to guess passwords or design personalized attacks. Avoid sharing travel plans, financial details, or overly personal information. Use strong passwords and two-factor authentication: Choose unique and complex passwords for each social network, combining capital letters, numbers, and symbols. Also, activate an extra security option that many platforms offer: after entering your password, you will receive a code to your phone or email to confirm it's you. This way, even if someone figures out your password, they won't be able to log in. Review your privacy settings: Platforms regularly update their policies and security options. Check who can see your content, tag you, or access your profile. Also, review and revoke permissions for third-party apps you no longer use. To make this easier, you can use Kaspersky's free Privacy Checker tool to keep track of your online information. Use cybersecurity solutions to protect your digital life: Solutions like Kaspersky Premium warn you about suspicious links and downloads, and also help you check if your phone number or e-mails appears in any data leakage, providing advice on what to do in case credentials were leaked. About Kaspersky Kaspersky is a global cybersecurity and digital privacy company founded in 1997. With over a billion devices protected to date from emerging cyberthreats and targeted attacks, Kaspersky's deep threat intelligence and security expertise is constantly transforming into innovative solutions and services to protect individuals, businesses, critical infrastructure, and governments around the globe. The company's comprehensive security portfolio includes leading digital life protection for personal devices, specialized security products and services for companies, as well as Cyber Immune solutions to fight sophisticated and evolving digital threats. We help millions of individuals and over 200,000 corporate clients protect what matters most to them.
Zawya
3 hours ago
- Zawya
CPX elevates security excellence with Microsoft Intelligent Security Association (MISA) membership
Abu Dhabi, UAE: CPX Holding, a leading provider of cutting-edge cyber and physical security solutions and services, today announced it has joined the Microsoft Intelligent Security Association (MISA), a prestigious ecosystem of independent software vendors (ISV) and managed security service providers (MSSP) that have integrated their solutions with Microsoft's security technologies. This milestone underscores CPX's continued commitment to delivering advanced, AI-powered cybersecurity solutions that protect digital infrastructure across critical infrastructure sectors. By joining MISA, CPX gains access to exclusive technical resources, collaborative opportunities, and joint go-to-market initiatives with Microsoft to help strengthen global security resilience. In addition to signalling the quality and reliability of CPX's cybersecurity solutions, the MISA membership translates to greater value for its customers. This includes enhanced solution integration for smoother deployments, early access to Microsoft's evolving security capabilities to address future threats proactively, and a deeper alignment with global best practices that ensures the highest standards of protection. 'Joining MISA is a major step forward in our mission to build a more secure and resilient digital world,' said Hadi Anwar, CEO of CPX. 'As a trusted national champion with expanding international reach, CPX is proud to collaborate with Microsoft to offer integrated, future-ready cybersecurity solutions. This partnership amplifies our impact, accelerates innovation, and enables us to better serve enterprises and governments in the UAE and beyond.' "Cyber threats are becoming increasingly complex and widespread. MISA unites the expertise of trusted security leaders, and we are pleased to announce CPX as a new member," stated Ahmed Hamzawy, Chief Partnership Officer at Microsoft UAE. "By working together, we can assist customers in defending against today's sophisticated attacks with improved speed, integration, and confidence." Members are invited to join MISA based on a rigorous nomination process led by Microsoft security stakeholders. Eligibility requires demonstrated integration with MISA-qualified Microsoft security products, strong technical alignment, and multiple customer references. Final approval is granted by the MISA Governance Council. CPX's membership reinforces its role as a trusted provider of integrated security solutions, empowering organizations to strengthen their security resilience. About CPX Holding CPX, a G42 company, is a leading provider of end-to-end cyber and physical security solutions and services. Founded in 2022 and headquartered in Abu Dhabi, CPX employs over 600 cyber and physical security specialists serving enterprises, governments, and critical infrastructure sectors in the UAE and beyond. With a strong focus on delivering transformative security across the AI ecosystem, CPX empowers organizations to assess risks, protect assets, and operate with unwavering confidence.
Tahawul Tech
3 hours ago
- Tahawul Tech
Cybercriminals set their sights on U.S. airlines
Notorious cybercriminal group 'Scattered Spider' has set its sights on the aviation industry, successfully breaching the computer networks of multiple airlines in the U.S. and Canada, according to the FBI and private experts responding to the hacks. The hacking hasn't affected airline safety, but it has top cyber executives at major airlines across the United States on alert because of the hacking suspects: A network of young cybercriminals called 'Scattered Spider' who are known for their aggressive efforts to extort or embarrass their victims. It's a fresh headache for the travel industry as the busy summer travel season kicks into high gear. This is now the third major US business sector, after insurance and retail, to face a flurry of cyberattacks tied to the criminal group. The hackers target big companies and their IT contractors, 'which means anyone in the airline ecosystem, including trusted vendors and contractors, could be at risk', the FBI said in a statement that named Scattered Spider as the perpetrator of the airline hacks. 'Once inside (a victim's network), Scattered Spider actors steal sensitive data for extortion and often deploy ransomware', the FBI said. The FBI, the statement continued, 'is actively working with aviation and industry partners to address this activity and assist victims.' Hawaiian Airlines and Canada's WestJet confirmed that they were still assessing the fallout from recent cyberattacks, though the airlines did not name the perpetrators. More victims in the aviation industry could come forward, sources briefed on the investigation said. WestJet's issues began when the airline said it was responding to a 'cybersecurity incident' that was affecting access 'to some services and software systems', including its app for customers. Both WestJet and Hawaiian Airlines said their operations were unaffected by the hacks. The lack of impact on operations at the airlines is 'likely a sign of good internal network separations or good business continuity and resiliency planning', said Aakin Patel, the former chief information security officer of Las Vegas' main airport. It is not just the airlines themselves, but other 'segments of the aviation ecosystem' that are seeing increased cyberattacks, according to Jeffey Troy, the president of the Aviation ISAC, an industry group for sharing cyber threats. 'Our members are keenly alert to attacks from financially motivated attackers and collateral impacts emanating out of geo-political tensions around the world', Troy said. The fine margins for error in the airline industry were on display recently, when a separate IT outage, apparently unrelated to malicious cyber activity, caused delays for some American Airlines passengers. The Scattered Spider hacks have mobilised people across the industry to respond. In-house cybersecurity experts at major airlines have been closely monitoring the situation while cybersecurity firms such as Google-owned Mandiant are helping with the recovery and urging airlines to secure their customer service call centres. One of Scattered Spiders' preferred methods of infiltrating corporations is calling up help desks and pretending to be employees or customers. The technique has been highly effective for hackers to gain access to the networks of big companies. 'Airlines rely heavily on call centres for a lot of their support needs,' said Patel, making them 'a likely target for groups like this'. Scattered Spider gained attention in September 2023 when they were linked to a pair of multimillion-dollar hacks on Las Vegas casinos and hotels MGM Resorts and Caesars Entertainment. The hackers tend to pick one sector to target for weeks on end. Recently they were the suspect in a hack of insurance giant Aflac that potentially stole Social Security numbers, insurance claims and health information. Before that, it was the retail sector: The hackers, according to an internal memo, targeted Ahold Delhaize USA, which has the same parent company as the Giant and Food Lion grocery chains. 'The actor's core tactics, techniques, and procedures have remained consistent,' Mandiant chief technology officer Charles Carmakal said in a statement, and that it 'is aware of multiple incidents in the airline and transportation sector' that resemble the operations of Scattered Spider. Source: CNN Image Credit: Stock Image
