← Back
Cloudflare
Cloudflare launches Account Abuse Protection with leaked credential detection and hashed user IDs
Cloudflare · featuresecurityapi · blog.cloudflare.com ↗

Account Abuse Protection Now Available in Early Access

Cloudflare is announcing a comprehensive suite of fraud prevention tools designed to stop account abuse from both bots and human attackers. The new Account Abuse Protection service addresses the evolving threat landscape where attackers combine industrialized credential stuffing with human-powered fraud farms to maintain thousands of fake accounts and compromise legitimate user accounts at scale.

Key Features

The announcement includes several new detection and prevention capabilities:

  • Disposable Email Check: Identifies and blocks signups using throwaway email addresses, a common tactic for fake account creation and promotion abuse
  • Email Risk Scoring: Flags emails deemed risky based on patterns and infrastructure indicators
  • Hashed User IDs: Cryptographic identifiers generated per domain that enable fraud detection without compromising end-user privacy
  • Account Takeover (ATO) Detections: Enhanced behavioral anomaly detection that caught an average of 6.9 billion suspicious login attempts daily across Cloudflare's network in the last week

Availability and Pricing

Account Abuse Protection is available in Early Access to Bot Management Enterprise customers at no additional cost during the limited early access period. These tools will be integrated into Cloudflare's broader Fraud Prevention offering, launching later in 2026.

Context: The Credential Abuse Problem

The new protections build on existing capabilities. Cloudflare's free leaked credential detection service checks whether passwords have been exposed in known data breaches—a critical need given that 41% of logins across Cloudflare's network use leaked credentials. Additionally, 60% of traffic to login pages across the network is automated, according to Cloudflare's Black Friday 2024 analysis, creating massive pressure on authentication endpoints.

The layered defense approach combines automation detection with identity verification to address sophisticated attacks that involve both bots and human actors using coordinated fraud tactics.