The Cloudforce One Threat Events API now supports TAXII as an output format, enabling standardized, automated sharing of cyber threat intelligence with your existing security stack.
Why this matters
- You can now ingest Cloudforce One threat data directly into your SIEM, TIP or SOAR tools that prefer TAXII-formatted streams without needing custom translation scripts.
- By supporting the TAXII format parameter in our API, security teams can automate the synchronization of indicator data, reducing the manual overhead of updating blocklists and detection rules.
- This alignment with industry standards ensures that your threat data remains consistent across different security ecosystems and partner integrations.
How to use it
When calling the Threat Events API, you can now specify taxii in the format query parameter:
GET /accounts/{account_id}/cloudforce_one/threat_events?format=taxii
You can find the updated documentation in the Cloudflare API Reference.
Source: Cloudflare
Latest Posts
- OAuth support for the AWS MCP Server

- AWS Config now supports 191 additional managed rules

- Amazon SageMaker HyperPod now supports deep health checks for Slurm clusters with continuous provisioning

- Amazon MSK Replicator now supports replication from external Apache Kafka clusters to MSK Standard brokers






![Dynamics 365 Customer Service - Enable enhanced screen recording controls for admins [MC1302880] 7 Dynamics 365 Customer Service – Enable enhanced screen recording controls for admins [MC1302880]](https://mwpro.co.uk/wp-content/uploads/2025/06/pexels-s-n-b-m-827240-1773181-96x96.webp)