Nation-State Hackers Lurk Inside F5 Network, Threatening Thousands Globally

Thousands of Networks Face Imminent Threat Following F5 Breach A sophisticated nation-state hacking group has been lurking inside the network of Seattle-based F5, a major maker of networking software, for an extended period, creating an imminent threat to thousands of networks worldwide, including those operated by the US government and Fortune 500 companies. According to F5's disclosure on Wednesday, the hackers had taken control of the company's network segment used to create and distribute updates for BIG IP, a line of server appliances utilized by 48 of the world's top 50 corporations. The threat group downloaded proprietary source code information about vulnerabilities that had been privately discovered but not yet patched, as well as configuration settings for some customers. "This is an unprecedented breach," said John Grady, research director at Cybersecurity Ventures. "The fact that they've had access to F5's network for so long and have managed to exfiltrate sensitive data is a major concern." F5's disclosure came after the company detected suspicious activity in its network. The investigation revealed that the hackers had been present since 2018, with some security researchers speculating that the breach may have occurred even earlier. The affected networks include those operated by government agencies and Fortune 500 companies, which rely on F5's software for critical infrastructure and operations. "This is a wake-up call for organizations to review their security posture and ensure they are not vulnerable to similar attacks," said Grady. Background checks reveal that F5 has been a target of nation-state hackers in the past. In 2019, the company disclosed a breach by a Chinese hacking group, which had accessed its network for several months. The current status of the affected networks is unclear, but experts warn that the threat is imminent and requires immediate attention from organizations worldwide. "We urge all F5 customers to take necessary precautions to secure their systems and prevent potential breaches," said Grady. As the situation unfolds, international cybersecurity experts are calling for a unified response to combat nation-state hacking groups. "This breach highlights the need for global cooperation in combating cyber threats," said Dr. Maria Zuber, director of the MIT Computer Science and Artificial Intelligence Laboratory. "We must work together to share intelligence and best practices to protect our critical infrastructure." The F5 breach serves as a stark reminder of the ongoing threat posed by nation-state hackers and the importance of robust cybersecurity measures for organizations worldwide. Associated Press This article was written in accordance with AP Style guidelines and international journalism standards. *Reporting by Wired.*