Threat Post

F5 Big-IP Vulnerable to Security-Bypass Bug

The KDC-spoofing flaw tracked as CVE-2021-23008 can be used to bypass Kerberos security and sign into the Big-IP Access Policy Manager or admin console. F5 Networks’ Big-IP Application Delivery ...
heise online

Network and cloud management: Attackers can paralyze F5 BIG-IP appliances

Important security updates have been released for F5 BIG-IP Next and NGINX, among others. Attackers can disrupt services via DoS attacks. In the security section of its website, F5 lists further ...
Bleeping Computer

Over 266,000 F5 BIG-IP instances exposed to remote attacks

Internet security nonprofit Shadowserver Foundation has found more than 266,000 F5 BIG-IP instances exposed online after the security breach disclosed by cybersecurity company F5 this week. The ...
Bleeping Computer

F5 releases BIG-IP patches for stolen security vulnerabilities

Cybersecurity company F5 has released security updates to address BIG-IP vulnerabilities stolen in a breach detected on August 9, 2025. The company disclosed today that state hackers breached its ...
Ars Technica

Thousands of customers imperiled after nation-state ransacks F5’s network

Thousands of networks—many of them operated by the US government and Fortune 500 companies—face an “imminent threat” of being breached by a nation-state hacking group following the breach of a major ...
TechRepublic

F5 Hit by ‘Nation-State’ Cyberattack

U.S. cybersecurity firm F5 has confirmed that it suffered a cybersecurity incident involving a “highly sophisticated nation-state threat actor” that maintained long-term access to certain company ...
Computer Weekly

F5 admits nation-state actor stole BIG-IP source code

F5 has revealed that a highly sophisticated nation-state threat actor had gained long-term, persistent access to its corporate network, exfiltrating parts of the source code for its flagship BIG-IP ...