ZDNet

Some enterprise VPN apps store authentication/session cookies insecurely

At least four Virtual Private Network (VPN) applications sold or made available to enterprise customers share security flaws, warns the Carnegie Mellon University CERT Coordination Center (CERT/CC) ...
Network World

F5 buys uRoam to strengthen access and authentication offering

F5 Networks has bought Secure Sockets Layer remote access vendor uRoam to help it offer a way to secure remote machines that are accessing corporate servers through F5 gear. By next March, the ...
Bleeping Computer

F5 fixes BIG-IP auth bypass allowing remote code execution attacks

A critical vulnerability in the F5 BIG-IP configuration utility, tracked as CVE-2023-46747, allows an attacker with remote access to the configuration utility to perform unauthenticated remote code ...
Threat Post

F5 Big-IP Vulnerable to Security-Bypass Bug

The KDC-spoofing flaw tracked as CVE-2021-23008 can be used to bypass Kerberos security and sign into the Big-IP Access Policy Manager or admin console. F5 Networks’ Big-IP Application Delivery ...

F5 Elevates Application Delivery and Security Platform with Comprehensive API Discovery and Application Delivery Enhancements

F5 (NASDAQ: FFIV) today unveiled significant enhancements to the F5 Application Delivery and Security Platform (ADSP). The ...
Bleeping Computer

CISA shares guidance to block ongoing F5 BIG-IP attacks

In a joint advisory issued today, CISA and the Multi-State Information Sharing and Analysis Center (MS-ISAC) warned admins of active attacks targeting a critical F5 BIG-IP network security ...