F5 Labs

F5 Labs is excited to announce a completely new flagship report: the 2023 Identity Threat Report: The Unpatchables. This report covers the evolution of phishing, credential stuffing, and multifactor authentication bypass techniques in detail. https://lnkd.in/e3c37VbK

In the latest installment of the Sensor Intelligence Series, CVE targeting in May 2024 shows continued intense scanning for CVE-2017-8941. https://lnkd.in/gPNdWK76

Distributed denial of service (#DDoS) attacks continue to present a major #cybersecurity challenge—with attackers shifting to ever more sophisticated approaches. By overwhelming a website or online service with large volumes of traffic from multiple sources, attackers try to shut down a company’s digital operations, damaging their revenue and their brand. And a recent F5 report shows attackers are exploiting vulnerable Internet of Things (#IoT) devices to build malicious #bots used for DDoS attacks. Specifically, our research found that cybercriminals are leveraging vulnerable Netgear routers and TP-Link to expand their DDoS attacks. To defend themselves, we recommend that companies with vulnerable devices patch against these security flaws. To learn more about this trend and how you can protect yourself, read our recent F5 Labs report. https://go.f5.net/15qo5ou6

❤️ AI does a lot of good things when put in the hands of good people. 💔 Turns out, it can do bad things when it's in the hands of bad people. 🔨 Keiron Shepherd and David Warburton have been running a workshop this week to first of all demystify how it is that you can go about protecting your AI deployment. And then they discuss some of the latest findings when it comes to attack vectors and methods used by the hackers. 🚀 If you missed the workshops, I assure you they were excellent and luckily all of this information is freely available, which I'll link below! F5 F5 Labs F5 DevCentral NGINX #AForceFor #AIvsAI

❤️ AI does a lot of good things when put in the hands of good people. 💔 Turns out, it can do bad things when it's in the hands of bad people. 🔨 Keiron Shepherd and David Warburton have been running a workshop this week to first of all demystify how it is that you can go about protecting your AI deployment. And then they discuss some of the latest findings when it comes to attack vectors and methods used by the hackers. 🚀 If you missed the workshops, I assure you they were excellent and luckily all of this information is freely available, which I'll link below! F5 F5 Labs F5 DevCentral NGINX #AForceFor #AIvsAI

Malicious internet traffic in April 2024: 80% of all scanning activity targets just 7 known CVEs in IoT devices. Attackers double-down on subsuming vulnerable home routers from TP-Link and Netgear into their enormous DDoS botnets #Mozi #Mirai #Condi. Even vulnerabilities with unknown CVEs are being exploited according to the F5 Threat Campaigns team. Read the full article to understand attacker motivations and the global impact they are having. https://lnkd.in/gfdqhfkT

In the latest installment of the Sensor Intelligence Series, CVE targeting in March 2024 targeted multiple IoT vulns, including one dramatic increase in wifi router targeting: https://lnkd.in/g4F5nWUX

In the latest installment of the Sensor Intelligence Series, CVE targeting in February 2024 targeted multiple IoT vulns, plus Microsoft, PHPUnit, and even a little bit of Drupalgeddon. https://lnkd.in/gWEbns4G

Tafara Muwandi breaks down all of 2023’s malicious bot traffic with slices by industry and web flow. See how your own attack traffic compares: https://lnkd.in/gr2S8sN2

The first Chief Information Security Officer, or #CISO, was named 29 years ago: After Russian hackers infiltrated financial services giant Citicorp (now Citigroup) in 1995 and stole more than $10 million, the Citigroup Board instructed the company’s CEO to recruit a security executive to improve the company’s digital defenses. That person was Steve Katz, and he became the world’s first CISO. Five years later, in 2000, the software company JD Edwards appointed its first CISO. That person was me. After 24 years of working as a CISO, and three years serving as CISO at F5, I’m preparing to retire. Over the course of my career, I’ve seen tremendous changes not only in the #cybersecurity landscape that organizations face, but also an evolution of the CISO role in today’s organizations. Continue reading: https://lnkd.in/gB7fU2X8