Related News

Oracle stock rises as company confirms Meta cloud deal

Oracle CEO Clay Magouyrk, center, speaks on a media tour of the Stargate data center in Abilene, Texas, on Sept. 23, 2025. Stargate is a collaboration of OpenAI, Oracle and

What Taiwan Semi’s blowout quarter means for these 2 portfolio chipstocks

Every weekday the CNBC Investing Club with Jim Cramer holds a “Morning Meeting” livestream at 10:20 a.m. ET. Here’s a recap of Thursday’s key moments. 1. The U.S. stock market

Beta Technologies IPO could value electric air taxi maker at $7.2B

Aerospace manufacturer BETA Technologies’ electric aircraft, ALIA, is seen at John F. Kennedy Airport in New York City, U.S., June 3, 2025. It is the first Advanced Air Mobility flight

2 green comets shine bright. How to spot them in the night sky?

Representative image (Picture credit: AP) NEW YORK: Two bright green comets are streaming through the skies and are visible to skygazers in the Northern Hemisphere. Both hail from the outer

Alibaba says AI spending for e-commerce Taobao Tmall is breaking even

Chinese e-commerce giant Alibaba has pledged to spend more than $50 billion on artificial intelligence over the next three years. CNBC | Evelyn Cheng SHANGHAI — Chinese tech giant Alibaba

PayPal’s crypto partner mints $300 trillion stablecoins in ‘technical error’

A Paypal logo is seen displayed on a smartphone next to cryptocurrency coins. Sopa Images | Lightrocket | Getty Images Paxos, the blockchain partner of PayPal, mistakenly minted $300 trillion

Cybersecurity firm F5 sinks 12% after disclosing nation-state hack

Word Count: 336 | Estimated Reading Time: 2 minutes

Pavlo Gonchar | SOPA Images | Lightrocket | Getty Images

U.S. cybersecurity company F5 fell 12% on Thursday after disclosing a system breach in which a “highly sophisticated nation-state threat actor” gained long-term access to some systems.

F5 shares were pacing for the worst day since April 27, 2022, when the stock fell 12.8%.

The company disclosed the breach in a Securities and Exchange Commission filing on Wednesday and said the hack affected its BIG-IP product development environment. F5 said the attacker infiltrated files containing some source code and information on “undisclosed vulnerabilities” in BIG-IP.

The breach was later attributed to state-backed hackers from China, Bloomberg reported, citing people familiar with the matter.

F5, which was made aware of the attack in August, said they have not seen evidence of any new unauthorized activity.

“We have no knowledge of undisclosed critical or remote code vulnerabilities, and we are not aware of active exploitation of any undisclosed F5 vulnerabilities,” F5 said in a statement.

The cybersecurity giant told customers that hackers were in the network for at least 12 months and that the breach used a malware called Brickstorm, according to Bloomberg.

F5 would not confirm the information.

Brickstorm is attributed to a suspected China-nexus threat dubbed UNC5221, Google Threat Intelligence Group said in a blog post. The malware is used for maintaining “long-term stealthy access” and can remain undetected in victim systems for an average of 393 days, according to Mandiant.

The attack prompted an emergency directive from the Cybersecurity and Infrastructure Security Agency on Wednesday, telling all agencies using F5 software or products to apply the latest update.

“The alarming ease with which these vulnerabilities can be exploited by malicious actors demands immediate and decisive action from all federal agencies,” CISA Acting Director Madhu Gottumukkala said. “These same risks extend to any organization using this technology, potentially leading to a catastrophic compromise of critical information systems.”

The UK’s National Cyber Security Centre also issued guidance for the F5 attack, advising customers to install security updates and continue monitoring for threats.

Source link