F5 disclosed that a sophisticated nation-state actor gained long-term access to key environments, potentially exposing source code and vulnerabilities. The company has taken multiple security measures, engaged cybersecurity experts, and issued guidance to customers and federal agencies. #F5Security #BIGIPVulnerabilities
Keypoints
- A nation-state threat actor accessed critical F5 environments and exfiltrated sensitive files.
- F5 detected the breach in August but delayed public disclosure at the DOJ’s request.
- The U.S. Cybersecurity and Infrastructure Security Agency issued an emergency directive for federal agencies to secure F5 products.
- F5 rotated cryptographic keys and released updates for its products to improve security.
- The company engaged cybersecurity firms and law enforcement to investigate and strengthen defenses.
Read More: https://thecyberexpress.com/f5-nation-state-breach-cisa-guidance/