F5 Products Hacked: Nation-State Actor Breached Systems, Source Code Exposed
On October 15, 2025, F5 disclosed a breach by a sophisticated nation-state actor. This actor maintained long-term persistent access to F5's infrastructure. Access included BIG-IP product development source code and undisclosed security vulnerability information. F5 released patches on the same day to address these vulnerabilities. Currently, there is no known exploitation of these issues.
On October 15, 2025, F5 disclosed a breach by a sophisticated nation-state actor. This actor maintained long-term persistent access to F5's infrastructure. Access included BIG-IP product development source code and undisclosed security vulnerability information.
F5 released patches on the same day to address these vulnerabilities. Currently, there is no known exploitation of these issues. CERT-EU strongly recommends patching affected F5 products as soon as possible.