Threat Post

F5 Big-IP Vulnerable to Security-Bypass Bug

The KDC-spoofing flaw tracked as CVE-2021-23008 can be used to bypass Kerberos security and sign into the Big-IP Access Policy Manager or admin console. F5 Networks’ Big-IP Application Delivery ...
JD Supra

F5 Security Incident: BIG‑IP Source Code Theft Spurs Urgent Actions

On October 15, application security vendor F5, Inc. disclosed that a highly sophisticated nation-state threat actor maintained long-term, persistent access to certain F5 systems. The attackers ...
SiliconANGLE

F5 says nation-state actor breached internal systems, stole BIG-IP development files

Application security firm F5 Inc. disclosed in a filing with the U.S. Securities and Exchange Commission today that a sophisticated nation-state threat actor had gained unauthorized access to internal ...
heise online

Network and cloud management: Attackers can paralyze F5 BIG-IP appliances

Important security updates have been released for F5 BIG-IP Next and NGINX, among others. Attackers can disrupt services via DoS attacks. In the security section of its website, F5 lists further ...