Zeek in it’s sweet spot: Detecting F5’s Big-IP CVE10 (CVE-2020-5902)

By Ben Reardon, Corelight Security Researcher Having a CVE 10 unauthenticated Remote Code Execution vulnerability on a central load balancing device? That’s bad… Not being able to detect when a threat actor attempts and/or succeeds in compr… Continue reading Zeek in it’s sweet spot: Detecting F5’s Big-IP CVE10 (CVE-2020-5902)

Thousands of Vulnerable F5 BIG-IP Users Still Open to Takeover

Less than 500 machines have been patched since U.S. Cyber Command issued an alert to patch a critical bug that’s under active exploit. Continue reading Thousands of Vulnerable F5 BIG-IP Users Still Open to Takeover

F5 BIG-IP Has Huge, Enormous, Bad, Scary Security Holes (Patch NOW)

Drop everything: A CVSS score of 10 is as bad as it gets. This F5 BIG-IP vulnerability lets crims pwn your entire network.
The post F5 BIG-IP Has Huge, Enormous, Bad, Scary Security Holes (Patch NOW) appeared first on Security Boulevard.
Continue reading F5 BIG-IP Has Huge, Enormous, Bad, Scary Security Holes (Patch NOW)

F5 acquires Shape Security for $1B

F5 got an expensive holiday present today, snagging startup Shape Security for approximately $1 billion. What the networking company gets with a shiny red ribbon is a security product that helps stop automated attacks like credential stuffing. In an article earlier this year, Shape CTO Shuman Ghosemajumder explained what the company does: “We’re an enterprise-focused […] Continue reading F5 acquires Shape Security for $1B