Cloudflare celebrates the 11th anniversary of its iconic free cybersecurity program Galileo
Cloudflare commemorates the 11th anniversary of Project Galileo, its flagship initiative delivering free cybersecurity protection to at‑risk public‑interest organizations across the globe.
Since launching in June 2014, the program has defended journalists, human‑rights groups, independent media, environmental activists, and others working on the frontlines of democracy, civil society, and environmental justice.
Highlights of Project Galileo's Eleventh Year:
An interactive Cloudflare Radar report providing insights into the cyber threats faced by at-risk public interest organizations protected under the project.
An expanded commitment to digital rights in the Asia-Pacific region with two new Project Galileo partners.
New stories from organizations protected by Project Galileo working on the frontlines of civil society, human rights, and journalism from around the world.
Tracking and reporting on cyberattacks with the Project Galileo 11th anniversary Radar report
To mark Project Galileo's 11th anniversary, Cloudflare published a new Radar report that shares data on cyberattacks targeting organizations protected by the program. It provides insights into the types of threats these groups face, with the goal of better supporting researchers, civil society, and vulnerable groups by promoting the best cybersecurity practices. Key insights include:
A growing trend in DDoS attacks against these organizations, becoming more common than attempts to exploit traditional web application vulnerabilities.
Between May 1, 2024, to March 31, 2025, Cloudflare blocked 108.9 billion cyber threats against organizations protected under Project Galileo. This is an average of nearly 325.2 million cyber attacks per day over the 11-month period, and a 241% increase from our 2024 Radar report.
Journalists and news organizations experienced the highest volume of attacks, with over 97 billion requests blocked as potential threats across 315 different organizations. The peak attack traffic was recorded on September 28, 2024. Ranked second was the Human Rights/Civil Society Organizations category, which saw 8.9 billion requests blocked, with peak attack activity occurring on October 8, 2024.
Cloudflare onboarded the Belarusian Investigative Center, an independent journalism organization, on September 27, 2024, while it was already under attack. A major application-layer DDoS attack followed on September 28, generating over 28 billion requests in a single day.
Many of the targets were investigative journalism outlets operating in regions under government pressure (such as Russia and Belarus), as well as NGOs focused on combating racism and extremism, and defending workers' rights.
Tech4Peace, a human rights organization focused on digital rights, was targeted by a 12-day attack beginning March 10, 2025, that delivered over 2.7 billion requests. The attack saw prolonged, lower-intensity attacks and short, high-intensity bursts. This deliberate variation in tactics reveals a coordinated approach, showing how attackers adapted their methods throughout the attack.
The full Radar report includes additional information on public interest organizations, human and civil rights groups, environmental organizations, and those involved in disaster and humanitarian relief.
The dashboard also serves as a valuable resource for policymakers, researchers, and advocates working to protect public interest organizations worldwide.
Global partners are the key to Project Galileo's continued growth
Partnerships are central to the success of Project Galileo. Cloudflare relies on a network of 56 trusted civil society organizations around the world to identify and support groups that would benefit from its cybersecurity protection. With the help of these partners, the company continues to expand its reach, delivering vital tools and resources to communities most in need of digital defense.
Continuing Support for Vulnerable Groups Worldwide
In 2025, many of Cloudflare's Project Galileo partners have faced significant funding cuts, impacting their ability to support communities, defend human rights, and uphold democratic values.
Amid these financial and logistical challenges, maintaining protection for these essential services has become more critical than ever. Cloudflare expresses gratitude to its civil society partners who continue to play a vital role in identifying at-risk organizations in need of support.
Together, they are working toward a more secure, resilient, and open Internet for all.
To learn more about Project Galileo and its global impact, visit cloudflare.com/galileo. Project Galileo case studies can be found here.
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Gulf Business
an hour ago
- Gulf Business
Building a resilient digital economy: How stc group is advancing cybersecurity for businesses and people
Image: Getty Images As the world embraces rapid technological advancements, the digital landscape is evolving at an unprecedented pace. Innovations like cloud computing, IoT, AI, and blockchain are reshaping industries, but they also bring growing cyber threats. With cybercrime projected to cost the global economy trillions annually, cybersecurity has become cornerstone of digital resilience and economic stability. In Saudi Arabia, stc group is leading the charge, advancing cybersecurity to protect businesses, individuals, and the kingdom's digital future. With a cybersecurity index (CS Index) rating of 89.88 per cent and a capability maturity level of 4.51 surpassing the global telecom average of 65.7 per cent Innovative cybersecurity solutions for a secure ecosystem To address the growing sophistication of cyber threats across industries — from healthcare and finance to logistics — stc group has developed a robust cybersecurity framework designed to safeguard businesses, government institutions, and individuals from evolving threats, ensuring a secure digital ecosystem for all stakeholders. At the heart of this strategy is sirar by stc, recognised as one of the top managed security service providers (MSSP) in MENA. Its Threat Intelligence service leverages AI-powered analytics and big data insights to identify, analyse and neutralise cyber threats before they escalate, providing organisations with a proactive defense mechanism. During Black Hat 2024 in Riyadh – the world's fastest- growing cybersecurity event, sirar by stc launched a groundbreaking service called 'Athar', a Saudi-developed solution designed to protect sensitive data from leaks and enhance organisational resilience against cyberthreats. Strengthened by sirar by stc's advanced security solutions, stc's Security Operations Center (SOC) provides real-time monitoring and rapid incident response capabilities, enabling proactive threat detection and mitigation to minimise the impact of cyberattacks for both the public and private sectors. In addition to delivering cutting-edge cybersecurity solutions, stc group is committed to fostering a secure ecosystem through its Security Pass Program. This initiative requires partners to obtain compliance certification from authorised audit firms, ensuring that all entities within stc's network adheres to the highest cybersecurity standards. Strengthening cybersecurity through global collaboration stc group's ecosystem spans telecommunications, cloud computing, IoT, AI, and digital infrastructure, all secured by advanced cybersecurity measures. These efforts are further amplified through strategic collaborations with both local and global partners. At the national level, stc works closely with the Ministry of Communications and Information Technology and the Saudi National Cybersecurity Authority (NCA) to strengthen the kingdom's digital infrastructure. These partnerships not only enhance technical capabilities but also foster a culture of cybersecurity awareness and innovation across the country. On the global stage, stc has forged major partnerships with leading technology and cybersecurity providers to elevate its offerings. In 2024, the group announced its partnership with Oracle to enhance cloud security and data sovereignty, ensuring compliance with regional regulations while bolstering infrastructure resilience. Through sirar by stc, the group partnered with Google Cloud Security to deploy AI-driven cybersecurity solutions tailored to regional needs. Additionally, sirar expanded its long-standing collaboration with Group-IB, advancing risk and attack management capabilities. As stc continues to expand its global footprint, cybersecurity remains at the core of its growth strategy, ensuring that every new technology and service is built on a secure, resilient foundation. Read:
Zawya
an hour ago
- Zawya
Jordan: NCSC approves 2025–2028 National Cybersecurity Strategy
AMMAN — The National Cyber Security Centre (NCSC) on Thursday said that it had approved Jordan's National Cybersecurity Strategy for 2025–2028. The strategy serves as a 'comprehensive' national plan aimed at supporting the Kingdom's efforts, through the centre, to build an effective national cybersecurity framework, the Jordan News Agency, Petra, reported. The centre said it would work in partnership with relevant national institutions to develop the strategy's executive programme and oversee the implementation of related programmes and activities, based on 'clear' timelines and performance indicators. The strategy outlines the Kingdom's vision to establish a secure, resilient, and trusted Jordanian cyberspace, built on national capabilities and contributing to economic growth and prosperity. It also seeks to achieve this vision through four main strategic objectives and 14 sub-goals, with 'clear' priorities that encompass programmes, projects, and initiatives designed to deliver on these objectives. The strategy also aims to position Jordan as a 'leading' regional hub for cybersecurity, while ensuring a safe digital environment that fosters innovation and entrepreneurship, attracts global cybersecurity investment, and supports the Kingdom's economic modernisation and digital transformation goals. © Copyright The Jordan Times. All rights reserved. Provided by SyndiGate Media Inc. (
Khaleej Times
2 hours ago
- Khaleej Times
16 billion passwords leaked in largest data breach, find researchers
In what is being touted as the largest data breach ever, 16 billion login credentials were found exposed. Researchers from Cybernews have discovered a number of supermassive datasets, with billions of login credentials. The findings were the result of an ongoing investigation that the team started at the beginning of 2025. So far, they've discovered 30 exposed datasets containing from tens of millions to over 3.5 billion records each. The leak includes billions of login credentials from social media, VPNs, developer portals and user accounts for all the major vendors. According to the report, most of the information followed a clear structure: URL, followed by login details and a password. They said that this is exactly how most modern infostealers – malicious software stealing sensitive information – collect data. Which services are affected? Researchers state that the the leak opened the door to 'pretty much any online service imaginable, from Apple, Facebook, and Google, to GitHub, Telegram, and various government services.' 'With over 16 billion login records exposed, cybercriminals now have unprecedented access to personal credentials that can be used for account takeover, identity theft, and highly targeted phishing' the researchers said. They emphasized that it is especially concerning alarming that these aren't just old breaches being recycled. 'This is fresh, weaponizable intelligence at scale,' researchers said. How can you protect yourself? The researchers say that maintaining basic cyber hygiene is essential. You can use a password manager to generate strong, unique passwords, and update them regularly. Users should also review their systems for infostealers, to avoid losing their data to attackers.
