Key Highlights
- A Bloomberg report links a major cybersecurity breach at F5 Networks to Chinese state-backed hackers.
- F5 confirms unauthorized access but says its core operations remain unaffected.
- U.S. and U.K. authorities issue cybersecurity alerts as federal networks face related threats.
A cyber breach in the U.S. based cybersecurity company F5 Networks (NASDAQ: FFIV) has reportedly been linked to state-backed hackers backed by China, according to a Bloomberg News report citing sources familiar with the investigation.
While Reuters could not independently confirm Bloomberg’s findings, the alleged breach adds to a growing number of cyberattacks involving state-sponsored actors targeting U.S. corporations and federal systems, raising renewed concerns over national cybersecurity preparedness.
Federal Agencies on Alert
Earlier on Wednesday, U.S. officials issued warnings that federal networks were being targeted by a “nation-state cyber threat actor” exploiting vulnerabilities in F5 products.
The Cybersecurity and Infrastructure Security Agency (CISA) confirmed that it is actively monitoring the incident but stopped short of attributing the attack to China.
“These same risks extend to any organization using this technology, potentially leading to a catastrophic compromise of critical information systems,” said CISA Acting Director Madhu Gottumukkala in a statement.
F5 Confirms Breach, Denies Operational Impact
F5, a major provider of cybersecurity and multi-cloud application services to enterprise and government clients, acknowledged that unauthorized access occurred in certain internal systems.
However, the company emphasized that core operations and customer-facing platforms were not affected.
Bloomberg reported that attackers may have remained inside F5’s network for up to 12 months undetected. And the company has shared a threat-hunting guide with clients regarding a new malware strain known as Brickstorm, believed to be linked to a China-backed hacking group.
Global Response and Customer Briefings
According to the Bloomberg report, F5 CEO François Locoh-Donou is personally leading briefings with key customers to outline the timeline and nature of the breach.
Meanwhile, British cybersecurity authorities have urged all F5 users to apply the latest software updates immediately to mitigate potential exposure.
Neither the Chinese Embassy in Washington nor F5 representatives responded to Reuters’ requests for comment.
Broader Cybersecurity Implications
If confirmed, the cybersecurity company F5 breach could mark one of the most prolonged and damaging infiltrations of a major American cybersecurity vendor to date.
Experts warn that such incidents highlight the growing strategic cyber rivalry between the U.S. and China, with hackers increasingly targeting critical digital infrastructure and global cloud networks.The case adds to a series of high-profile attacks that continue to shape the Cyber Security News landscape, reinforcing calls for stronger international cooperation and faster vulnerability response mechanisms.