Cybersecurity firm F5’s stock sinks 12% after disclosing nation-state hack

Cybersecurity firm F5’s stock sinks 12% after disclosing nation-state hack


Pavlo Gonchar | SOPA Images | Lightrocket | Getty Images

U.S. cybersecurity company F5 fell 12% on Thursday after disclosing a system breach in which a “highly sophisticated nation-state threat actor” gained long-term access to some systems.

F5 shares were pacing for the worst day since April 27, 2022, when the stock fell 12.8%.

The company disclosed the breach in a Securities and Exchange Commission filing on Wednesday and said the hack affected its BIG-IP product development environment. F5 said the attacker infiltrated files containing some source code and information on “undisclosed vulnerabilities” in BIG-IP.

The breach was later attributed to state-backed hackers from China, Bloomberg reported, citing people familiar with the matter.

F5, which was made aware of the attack in August, said they have not seen evidence of any new unauthorized activity.

“We have no knowledge of undisclosed critical or remote code vulnerabilities, and we are not aware of active exploitation of any undisclosed F5 vulnerabilities,” F5 said in a statement.

The cybersecurity giant told customers that hackers were in the network for at least 12 months and that the breach used a malware called Brickstorm, according to Bloomberg.

F5 would not confirm the information.

Brickstorm is attributed to a suspected China-nexus threat dubbed UNC5221, Google Threat Intelligence Group said in a blog post. The malware is used for maintaining “long-term stealthy access” and can remain undetected in victim systems for an average of 393 days, according to Mandiant.

The attack prompted an emergency directive from the Cybersecurity and Infrastructure Security Agency on Wednesday, telling all agencies using F5 software or products to apply the latest update.

“The alarming ease with which these vulnerabilities can be exploited by malicious actors demands immediate and decisive action from all federal agencies,” CISA Acting Director Madhu Gottumukkala said. “These same risks extend to any organization using this technology, potentially leading to a catastrophic compromise of critical information systems.”

The UK’s National Cyber Security Centre also issued guidance for the F5 attack, advising customers to install security updates and continue monitoring for threats.



Source

Oracle announces departure of two oldest directors, narrowing board to 12
Technology

Oracle announces departure of two oldest directors, narrowing board to 12

George Conrades, then chairman and CEO of Akamai Technologies, listens during a meeting of the National Infrastructure Advisory Council in Washington on April 13, 2004. Jay Mallin | Bloomberg | Getty Images Oracle said Friday that two longtime directors, both octogenarians, have resigned from the board. George Conrades, former CEO of content network distribution company […]

Read More
Amazon plans first big-box retail store in Chicago suburb
Technology

Amazon plans first big-box retail store in Chicago suburb

An Amazon warehouse in Warrington, England. Nathan Stirk | Getty Images Amazon has submitted plans for a large-format store near Chicago that would be larger than a Walmart Supercenter, marking the latest experiment with physical retail for the tech company. As part of the plans, Amazon has proposed building a one-story, 229,000-square-foot building in Orland […]

Read More
Grok and X should be suspended from Apple, Google app stores, Democratic senators say
Technology

Grok and X should be suspended from Apple, Google app stores, Democratic senators say

Elon Musk looks on as US President Donald Trump speaks at the US-Saudi Investment Forum at the John F. Kennedy Center for the Performing Arts in Washington, DC on November 19, 2025. Brendan Smialowski | Afp | Getty Images Three Democratic senators are calling on Apple and Google to suspend the X and Grok apps […]

Read More
Powered by WordPress | WP Magazine by WP Mag Plus