SearchExplore Guides
HomeGuidesInfrastructureSecurityAutomationNewsToolsAboutSearch
Explore Guides
All NewsSecurity

Celebrating 12 years of Project Galileo

Cloudflare celebrates 12 years of Project Galileo with a report on cyberattacks against civil society, revealing alarming trends and new partnerships.

06 / 18 / 2026Source: Security
Celebrating 12 years of Project Galileo
Feature image

News

What happened

Cloudflare celebrates the 12th anniversary of Project Galileo by releasing its first comprehensive report on cyberattacks targeting civil society. This initiative, which supports over 3,400 organizations worldwide, highlights the increasing threats faced by these groups and underscores the need for enhanced cybersecurity measures.

Project Galileo, launched by Cloudflare to protect civil society organizations from cyber threats, has released its inaugural report analyzing cyberattacks against these entities. The report reveals that civil society groups are disproportionately targeted, with significant findings on DDoS attacks and phishing attempts. Alongside the report, Cloudflare has introduced qualitative case studies to provide context on the security needs of various organizations and announced new partnerships to bolster its efforts.

Release at a glance

Key facts from the announcement.

Project

Project Galileo

Anniversary

12 years

Number of Supported Organizations

3,400

Countries Involved

120

Changes at a glance

What's new

The report marks the first comprehensive analysis of cyberattacks against civil society, revealing critical insights into the nature and frequency of these threats. Additionally, Cloudflare has introduced qualitative case studies to better understand the security needs of specific organizations involved in Project Galileo.

Breaking changes

No breaking changes were reported in the source material.

Analysis

In detail

Cloudflare's Project Galileo currently supports over 3,400 websites belonging to journalists, human rights defenders, and nonprofits across 120 countries. The newly released report reveals that civil society organizations experience cyberattacks more frequently and intensely than other internet users, with DDoS attacks being the most common threat. The report indicates that civil society groups faced attempts to exploit website vulnerabilities at a rate over seven times higher than other Cloudflare customers.

The report also highlights that nearly 10% of all emails processed for civil society contained potential phishing material. Media organizations, particularly journalists in exile, were disproportionately affected, facing malicious traffic rates nearly four times higher than their counterparts. Cloudflare plans to produce this report annually to track cyber threat trends over time, providing valuable insights for civil society and policymakers alike.

In addition to the report, Cloudflare has released qualitative case studies detailing the security needs of various organizations, including the SHARE Foundation in Serbia and the Organized Crime and Corruption Reporting Project (OCCRP) in the Netherlands. These case studies aim to contextualize the findings of the report and emphasize the importance of tailored cybersecurity solutions for diverse civil society groups.

Key takeaways

The most important facts from this update.

Cloudflare's Project Galileo supports over 3,400 civil society websites.
The inaugural report highlights increased cyber threats against civil society.
DDoS attacks are the most common threat, often lasting days or weeks.
Civil society groups faced exploitation attempts at rates over seven times higher than others.
Nearly 10% of emails for civil society contained potential phishing material.
Media organizations, especially journalists in exile, were disproportionately affected.
Cloudflare plans to produce this report annually to track trends.

Why it matters

The findings from Cloudflare's report underscore the critical cybersecurity challenges faced by civil society organizations, which play a vital role in democracy and human rights. By highlighting these issues, Cloudflare aims to drive awareness and action towards more robust cybersecurity measures for vulnerable groups.

Homelab impact

Homelab operators and self-hosters involved in supporting civil society initiatives may find themselves at increased risk of cyberattacks, especially if they host services for organizations similar to those in Project Galileo. Understanding the trends and threats outlined in the report can help these operators implement better security practices and tools to protect their infrastructure.

Additionally, the report's findings on DDoS attacks and phishing attempts can inform self-hosters about the importance of robust security configurations and monitoring. Operators should consider reviewing their security protocols and possibly integrating services that enhance their defenses against such threats.

REMOTE ACCESS

Protect Your Admin Sessions

A zero-exposure architecture secures your server. A VPN secures you — encrypting your connection when managing infrastructure from untrusted networks, coffee shops, or travel. NordVPN is what we use for this layer.

Try NordVPN

This is an affiliate link. If you purchase, I earn a commission at no extra cost to you.

What to do next

Practical steps for operators running self-hosted stacks.

Review the comprehensive report on cyberattacks against civil society.
Assess your current cybersecurity measures and identify potential vulnerabilities.
Consider implementing DDoS protection and phishing detection tools.
Stay informed about future reports from Cloudflare to track evolving threats.
Engage with civil society organizations to understand their security needs.

This article summarises reporting from Cloudflare Blog. Visit the original post for release notes, changelogs, and full technical documentation.

Read on Cloudflare Blog
Self HostingSecurityInfrastructureNetworking