F5 confirms hackers stole source code, bug details in disastrous security incident – here’s everything we know so far and how to protect yourself

Cybersecurity firm F5 has confirmed state-sponsored hackers have stolen source code and customer information following a cyber attack.

In an alert to customers , the company said threat actors maintained long-term, persistent access to its BIG-IP product development environment and engineering knowledge management systems.

As part of the attack, threat actors exfiltrated files containing some BIG-IP source code, along with information pertaining to undisclosed vulnerabilities that the company was in the process of remediating.

Notably, hackers don’t appear to have accessed data from its CRM, financial, support case management, or iHealth systems. Similarly, the company's software supply chain, including its source code and build and release pipelines, doesn't appear to have been modi