Zach 🇺🇸 🇮🇱Nov 20

I’m curious how many of you are actively evaluating an exit strategy from #F5 #BigIP, now that it’s clear these appliances have been #compromised to a degree that makes long-term trust questionable. Are you already testing replacements, or at least mapping out contingency plans? And if so, which platforms are emerging as viable alternatives?

From what I’m seeing, teams are weighing several directions — anything from #HAProxy, #NGINX/#OpenResty, or Envoy-based solutions, to #cloudnative forms and #opensource service meshes. None is a drop-in replacement, but each represents a different set of tradeoffs depending on how much control, transparency, and verifiability you want going forward.
#loadbalancer #security #cybersecurity

LucomoOct 23

"F5 said, the hackers took control of the network segment the company uses to create and distribute updates for BIG IP, a line of server appliances that F5 says is used by 48 of the world’s top 50 corporations."

https://www.schneier.com/blog/archives/2025/10/serious-f5-breach.html

#BIGIP #CloudServices #LoadBalancing #F5

Serious F5 Breach - Schneier on Security

This is bad: F5, a Seattle-based maker of networking software, disclosed the breach on Wednesday. F5 said a “sophisticated” threat group working for an undisclosed nation-state government had surreptitiously and persistently dwelled in its network over a “long-term.” Security researchers who have responded to similar intrusions in the past took the language to mean the hackers were inside the F5 network for years. During that time, F5 said, the hackers took control of the network segment the company uses to create and distribute updates for BIG IP, a line of server appliances that F5 ...

Schneier on Security
Offensive SequenceOct 20
🚨 F5 breach (CRITICAL): Nation-state accessed BIG-IP dev systems — exfiltrated source, 0-day info, and configs. No active exploits yet, but risk is high. Monitor, segment, and patch ASAP when available. Details: https://radar.offseq.com/threat/f5-data-breach-what-happened-and-how-it-impacts-yo-8c427a49 #OffSeq #BIGIP #CyberThreat #Infosec
Alexander JanßenOct 17
Ouch. #F5 #BigIP #security
https://my.f5.com/manage/s/article/K000154696
myF5

PrivacyDigestOct 17

#Breach of #F5 requires “emergency action” from BIG-IP users, feds warn

Thousands of networks—many of them operated by the US government and Fortune 500 companies—face an “imminent threat” of being breached by a nation-state #hacking group following the breach of a major maker of software, the federal government warned Wednesday.
#BIGIP #security

https://arstechnica.com/security/2025/10/breach-of-f5-requires-emergency-action-from-big-ip-users-feds-warn/

Thousands of customers imperiled after nation-state ransacks F5’s network

Risks to BIG-IP users include supply-chain attacks, credential loss, and vulnerability exploits.

Ars Technica
PrivacyDigestOct 17

#F5 Says #Hackers Stole Undisclosed BIG-IP Flaws, Source Code
#BIGIP

https://it.slashdot.org/story/25/10/15/2214235/f5-says-hackers-stole-undisclosed-big-ip-flaws-source-code?utm_source=rss1.0mainlinkanon&utm_medium=feed

F5 Says Hackers Stole Undisclosed BIG-IP Flaws, Source Code - Slashdot

An anonymous reader quotes a report from BleepingComputer: U.S. cybersecurity company F5 disclosed that nation-state hackers breached its systems and stole undisclosed BIG-IP security vulnerabilities and source code. The company states that it first became aware of the breach on August 9, 2025, with...

WIRED - The Latest in Technology, Science, Culture and BusinessOct 16

Why the F5 Hack Created an ‘Imminent Threat’ for Thousands of Networks

https://fed.brid.gy/r/https://www.wired.com/story/f5-hack-networking-software-big-ip/

Trevor McLeodOct 16

More on the #F5 #CyberSecurity breach

#bigip #china

https://www.bloomberg.com/news/articles/2025-10-16/potentially-catastrophic-breach-of-cyber-firm-blamed-on-china?accessToken=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJzb3VyY2UiOiJTdWJzY3JpYmVyR2lmdGVkQXJ0aWNsZSIsImlhdCI6MTc2MDU4MDYzNywiZXhwIjoxNzYxMTg1NDM3LCJhcnRpY2xlSWQiOiJUNDc3QU1HT1QwSlcwMCIsImJjb25uZWN0SWQiOiI0OEFDOEE5MkEwNTM0MkQ4OEIyRjkwQjhDMTgzMTdDMyJ9.vozyjrW1RyoE6_Ph6ms6aM62jFdJ52tGvmBalESpvSI&leadSource=uverify%20wall

TechNaduOct 16

F5 Networks confirms a nation-state breach linked to China. BIG-IP development systems accessed for over a year; source code and vulnerabilities exfiltrated. Federal networks alerted.

https://www.technadu.com/f5-cybersecurity-breach-linked-to-china-backed-nation-state-threat-actors/611575/

#CyberSecurity #F5 #SupplyChainAttack #BIGIP #ThreatIntel

Show thread⠠⠵ avukoOct 16

@beyondmachines1 before you patch your F5 stuff, extract all forensic information you can!

For any F5 system you have, contact your vendor and press them to give you direct access and ways to gather evidence for yourself.

Also collect any and all logs and other forensic evidence from devices directly reachable from any F5 stuff you have.

These are hard earned lessons, people.

Slow down before you speed up, or your containment and eradication phases will be insufficient or even useless.

#ioc #cybersecurity #infosec #dfir #bigip #f5 #f5networks