F5 Says Nation-State Hackers Stole Source Code and Vulnerability Data

F5 reveals state-sponsored hack, theft of BIG-IP source code, and client data; suspected Chinese involvement, no critical flaws compromised.

By Content Team

Oct 15, 2025

ON THIS PAGE

Share

---

ON THIS PAGE

Want more insights like this?

Subscribe to our newsletter to get the latest software protection strategies delivered to your inbox.

By submitting your email, you consent to Codekeeper contacting you and agree to our privacy policy.

F5 disclosed that state-sponsored hackers breached its systems and stole sensitive data, including BIG-IP source code and information on undisclosed vulnerabilities. The attackers maintained persistent access to development systems, though F5 says no critical vulnerabilities or remote code execution flaws were compromised.

The company detected the August 9 attack but delayed disclosure with Justice Department permission. Some customer configuration data from a "small percentage" of clients was also stolen from an engineering platform.

While F5 found no evidence of supply chain tampering or access to financial systems, the attack profile suggests Chinese state-sponsored involvement. Chinese hackers frequently target major software companies hunting for zero-day vulnerabilities.

Source: Security Week

Share this article

Have questions about protecting your software?

Our escrow experts are standing by to help.

Book a free demo

YOU MAY ALSO LIKE

Google Rushes Chrome Security Update to Fix Critical WebView Vulnerability

Jan 7, 2026

North Korean Hackers Exploit VS Code to Remotely Control Victims' Computers

Jan 23, 2026

Hightower Financial Services Hit by Data Breach Affecting 131,000 People

Mar 27, 2026

Single Hacker Behind Dozens of Major Corporate Data Breaches

Jan 6, 2026