Drupal's security advisory has announced the patches to fix 2 moderate and 2 less critical vulnerabilities in Drupal 7x and 8x versions. One of the moderately critical vulnerability patch is related to DoS loop holes. Its highly recommended to update your Drupal site to respective 7.52 and 8.2.3. Notably Drupal 8.2.3 includes only security patches.
Cloudflare helps to prevent your website from various security and performance threats. Its quite simple, quick and instant to get your website configured with Cloudflare. You just need to add your site to cloudflare and change the DNS of your domain name with the newly provided DNS by Clodflare.
CSRF, DoS, SQL injection and XSS are few of the most common security threats for any web application. Looking at the expand-ability of web preventing such attacks is always on priority. Apart from DoS rest threats can well be prevented at application level. Prevention of DoS is often difficult, expensive and needs 3rd party tools.
Whenever we try deleting any content Drupal displays a confirmation page. Through this Confirmation page Drupal handles CSRF. Cross site request forgery is an attach which enforces an end user to perform some operation without his intend.