Collaborate Disseminate
F5’s latest quarterly security notification includes nine advisories, including four for high-severity vulnerabilities in BIG-IP and NGINX Plus.
The post F5 Patches High-Severity Vulnerabilities in BIG-IP, NGINX Plus appeared first on SecurityWeek.
Continue reading F5 Patches High-Severity Vulnerabilities in BIG-IP, NGINX Plus
China-linked threat actor Velvet Ant leveraged a legacy F5 BIG-IP appliance for three-year access to a victim’s network.
The post Chinese Hackers Leveraged Legacy F5 BIG-IP Appliance for Persistence appeared first on SecurityWeek.
Continue reading Chinese Hackers Leveraged Legacy F5 BIG-IP Appliance for Persistence
F5 has patched two potentially serious vulnerabilities in BIG-IP Next that could allow an attacker to take full control of a device.
The post F5 Patches Dangerous Vulnerabilities in BIG-IP Next Central Manager appeared first on SecurityWeek.
Continue reading F5 Patches Dangerous Vulnerabilities in BIG-IP Next Central Manager
A critical-severity vulnerability in F5 BIG-IP CVE-2023-46747 allows unauthenticated attackers to execute code remotely.
The post F5 Warns of Critical Remote Code Execution Vulnerability in BIG-IP appeared first on SecurityWeek.
Continue reading F5 Warns of Critical Remote Code Execution Vulnerability in BIG-IP
F5 says an artificial intelligence war could start between generative AI-toting bad actors and enterprises guarding data with AI. Australian IT teams will be caught in the crossfire. Continue reading F5 Warns Australian IT of Social Engineering Risk Escalation Due to Generative AI
A high-severity format string vulnerability in F5 BIG-IP can be exploited to cause a DoS condition and potentially execute arbitrary code.
The post F5 Working on Patch for BIG-IP Flaw That Can Lead to DoS, Code Execution appeared first on SecurityWeek.
Continue reading F5 Working on Patch for BIG-IP Flaw That Can Lead to DoS, Code Execution
F5’s BIG-IP platform has a Remote Code Execution (RCE) vulnerability: CVE-2022-1388. This one is interesting, because a Proof of Concept (PoC) was quickly reverse engineered from the patch and released …read more Continue reading This Week in Security: F5 Twitter PoC, Certifried, and Cloudflare Pages Pwned
It’s essential for older companies to recognize changes in the marketplace or face the brutal reality of being left in the dust. F5 is an old-school company that launched back in the 90s, yet has been able to transform a number of times in its history to avoid major disruption. Over the last two years, […] Continue reading Why F5 spent $2.2B on 3 companies to focus on cloud native applications
Applications networking company F5 announced today that it is acquiring Volterra, a multi-cloud management startup, for $500 million. That breaks down to $440 million in cash and $60 million in deferred and unvested incentive compensation. Volterra emerged in 2019 with a $50 million investment from multiple sources, including Khosla Ventures and Mayfield, along with strategic […] Continue reading F5 snags Volterra multi-cloud management startup for $500M
The Feds have published a Top 25 exploits list, rife with big names like BlueKeep, Zerologon and other notorious security vulnerabilities. Continue reading Bug Parade: NSA Warns on Cresting China-Backed Cyberattacks