Cloudflare Client-Side Security: smarter detection, now open to everyone

Cloudflare announces enhancements to its Client-Side Security product — including a cascading GNN + LLM detection pipeline — and describes catching a real-world malicious, obfuscated JavaScript ('core.js') used to hijack Xiaomi OpenWrt routers by changing DNS and admin credentials; the post provides IOCs (malicious URL, SHA-256, C2 domain) and makes domain-based threat intelligence available to all customers.