The fallout from a deeply critical (CVSS 10) security flaw in F5 Networks’ BIG-IP tool — widely used by some of the world’s biggest businesses — continues, after security firm CRITICALSTART revealed that mitigation could be bypassed and an NCC Group honeypot showed the bypass being exploited in the wild. UK-based independent information assurance firm NCC Group has been tracking the incident closely and says that approximately 6,000 internet exposed F5 devices are now potentially vulnerable again.

Read full article on CBR – CyberSecurity News