U.S. cybersecurity firm F5 disclosed a nation-state cyberattack that compromised its systems, stealing source code and vulnerability data related to BIG-IP products. Despite the breach, the company reports no evidence of exploitation or impact on customer data or supply chain security. #F5 #BIG-IP #NCCGroup #IOActive #Cyberattack
Keypoints
- F5 discovered the breach on August 9, 2025, involving nation-state hackers gaining long-term access.
- The attackers exfiltrated source code, vulnerability data, and configuration details related to BIG-IP.
- F5 confirmed no breach of its supply chain or disruption to its customer data or online platforms.
- The company strengthened security measures including credential rotation, monitoring, and environment hardening.
- Customer guidance includes installing updates, enabling threat monitoring, and following best security practices.