"A scan has revealed that more than 266,000 F5 BIG-IP instances are accessible from the internet due to the security breach disclosed earlier this week. Almost half of these devices are located in the United States, accounting for more than 142,000 IP addresses. F5 recently released security updates, including for the exploited vulnerability in BIG-IP. The US CISA required all federal agencies to update their F5 technology before October 22."
"F5 BIG-IP products are found virtually everywhere in corporate networks. They provide load balancing, firewalls, and access control for critical applications. The fact that hundreds of thousands of these systems are now publicly visible makes them attractive targets for cybercriminals. The spread shows how widespread F5 technology is. Given that Chinese state hackers are the main suspects in the data breach, these figures carry extra weight. Source code and unknown vulnerabilities may have fallen into the wrong hands."
More than 266,000 F5 BIG-IP instances are publicly accessible on the internet, with over 142,000 located in the United States. Shadowserver is tracking 266,978 IP addresses with an F5 BIG-IP signature, and roughly 100,000 devices are present across Europe and Asia; the Netherlands has about 3,800 exposed systems. F5 released security updates including patches for the exploited BIG-IP vulnerability, and CISA required federal agencies to update F5 technology before October 22. F5 BIG-IP devices provide load balancing, firewalls, and access control across corporate networks, making exposed systems high-value targets if source code or unknown vulnerabilities were compromised. Organizations must patch quickly to reduce potential impact.
Read at Techzine Global
Unable to calculate read time
Collection
[
|
...
]