SiliconANGLE

F5 says nation-state actor breached internal systems, stole BIG-IP development files

Application security firm F5 Inc. disclosed in a filing with the U.S. Securities and Exchange Commission today that a sophisticated nation-state threat actor had gained unauthorized access to internal ...
Ars Technica

Critical vulnerabilities in BIG-IP appliances leave big networks open to intrusion

Researchers on Wednesday reported critical vulnerabilities in a widely used networking appliance that leaves some of the world’s biggest networks open to intrusion. The vulnerabilities reside in ...
Infosecurity-magazine.com

CISA Urges Encryption of Cookies in F5 BIG-IP Systems

The US Cybersecurity and Infrastructure Security Agency (CISA) has urged organizations to address security risks related to unencrypted cookies used in F5 BIG-IP Local Traffic Manager (LTM) systems.
Bleeping Computer

CISA: Hackers abuse F5 BIG-IP cookies to map internal servers

CISA is warning that threat actors have been observed abusing unencrypted persistent F5 BIG-IP cookies to identify and target other internal devices on the targeted network. By mapping out internal ...
JD Supra

F5 Security Incident: BIG‑IP Source Code Theft Spurs Urgent Actions

On October 15, application security vendor F5, Inc. disclosed that a highly sophisticated nation-state threat actor maintained long-term, persistent access to certain F5 systems. The attackers ...
Bleeping Computer

F5 releases BIG-IP patches for stolen security vulnerabilities

Cybersecurity company F5 has released security updates to address BIG-IP vulnerabilities stolen in a breach detected on August 9, 2025. The company disclosed today that state hackers breached its ...