Lessons We Are Learning From Our Security Incident
F5, Wednesday, October 22nd, 2025
Last week, we disclosed a major security incident involving a highly sophisticated nation-state threat actor. As a CISO, I know what it is like to hear this kind of news from a partner. I understand how difficult and disruptive this has been for customers, and we truly apologize for-and take full ownership of-the incident.
Over the last week, we have spoken with hundreds of our customers as well as groups of fellow CISOs. I want to thank our customers and the broader security community for the partnership you've shown during this challenging time.
We are committed to learning from this incident, and we know there are things we could improve. Our top takeaway so far: Our controls were uneven-strong in some places and not in others. We will do better.