F5 fell victim to a state-sponsored hacking campaign, resulting in the theft of some source code and vulnerability information. The incident highlights ongoing cyber threats from Chinese threat actors targeting major software companies. #F5 #ChineseHackers
Keypoints
- F5 experienced a long-term cyber intrusion by a state-sponsored group, likely Chinese-based.
- The attackers accessed and exfiltrated files related to BIG-IP source code and vulnerabilities.
- F5 confirmed no evidence of modifications to its software supply chain or product development environment.
- The breach primarily affected a small percentage of customersβ configuration data, with no impact on core systems.
- The incident was disclosed with a delay granted by the U.S. Justice Department and did not impact F5βs operations.