‘Nation-state actor’ steals key source code; feds issue emergency warning

CISA issued an emergency directive after F5 source code and undisclosed vulnerabilities were stolen by a nation-state hacker.

'Significant' threat to US networks after hackers stole F5 source code, CISA warns

A threat actor affiliated with a nation-state broke into F5 and nabbed information regarding unpatched vulnerabilities.
Computer Weekly

F5 admits nation-state actor stole BIG-IP source code

F5 discloses that a nation-state actor has stolen source code and unpatched vulnerability data for its widely used BIG-IP ...

Google Wants Its Latest AI Tool To Find And Fix Vulnerable Code Before It Becomes A Problem

AI poses a huge threat to the cybersecurity ecosystem, but Google's new AI-powered tool aims to fight fire with fire and fix ...
The Hacker News

Over 100 VS Code Extensions Exposed Developers to Hidden Supply Chain Risks

New research has uncovered that publishers of over 100 Visual Studio Code (VS Code) extensions leaked access tokens that ...
CSO Online

Source code and vulnerability info stolen from F5 Networks

IT and security leaders should install latest patches from the application delivery and security vendor after suspected ...
Krebs on Security

18 Popular Code Packages Hacked, Rigged to Steal Crypto

At least 18 popular JavaScript code packages that are collectively downloaded more than two billion times each week were briefly compromised with malicious software today, after a developer involved ...

Identity As A Foundation For AI Security: It’s The Real Control Plane

It’s easy to frame AI security purely as a defensive exercise. But identity-centric AI security is also an enabler. With ...
VentureBeat

Anthropic ships automated security reviews for Claude Code as AI-generated vulnerabilities surge

Want smarter insights in your inbox? Sign up for our weekly newsletters to get only what matters to enterprise AI, data, and security leaders. Subscribe Now Anthropic launched automated security ...
Security Boulevard

DevOps Days Philadelphia 2025: Security As A Control Loop, Resilience, Runtime Risks, And How AI Is Changing It

DevOpsDays Philadelphia 2025 showed how AI governance, secrets security, runtime traces, and ablative resilience work ...
Wired

Hackers Went Looking for a Backdoor in High-Security Safes—and Now Can Open Them in Seconds

About two years ago, security researchers James Rowley and Mark Omo got curious about a scandal in the world of electronic safes: Liberty Safe, which markets itself as “America’s #1 heavy-duty home ...