| Ticker | Status | Jurisdiction | Filing Date | CP Start | CP End | CP Loss | Deadline |
|---|
| Ticker | Case Name | Status | CP Start | CP End | Deadline | Settlement Amt |
|---|
| Ticker | Name | Date | Analyst Firm | Up/Down | Target ($) | Rating Change | Rating Current |
|---|
On August 9, 2025, F5, Inc. (the "Company", "F5", "we", or "our") learned that a highly sophisticated nation-state threat actor had gained unauthorized access to certain Company systems. The Company promptly activated its incident response processes, and has taken extensive actions to contain the threat actor. To support these activities, the Company engaged leading external cybersecurity experts.
The Company believes its containment actions have been successful and, since the initiation of its containment efforts, has not observed any evidence of new unauthorized activity. The investigation, monitoring, and related activities are ongoing. The Company is actively engaged with federal law enforcement and government partners in connection with this incident. Additionally, the Company is implementing further measures to strengthen its security environment and protect its customers.
During the course of its investigation, the Company determined that the threat actor maintained long-term, persistent access to certain F5 systems, including the BIG-IP product development environment and engineering knowledge management platform. Through this access, certain files were exfiltrated, some of which contained certain portions of the Company's BIG-IP source code and information about undisclosed vulnerabilities that it was working on in BIG-IP. We are not aware of any undisclosed critical or remote code vulnerabilities, and we are not aware of active exploitation of any undisclosed F5 vulnerabilities. We have no evidence of modification to our software supply chain, including our source code and our build and release pipelines. This assessment has been validated through independent reviews by leading cybersecurity research firms.
We have no evidence of access to, or exfiltration of, data from our CRM, financial, support case management, or iHealth systems. However, some of the exfiltrated files from our knowledge management platform contained configuration or implementation information for a small percentage of customers. The Company is currently reviewing the contents of these files and will communicate with affected customers directly as appropriate.
We have no evidence that the threat actor accessed or modified the NGINX source code or product development environment, nor do we have evidence they accessed or modified our F5 Distributed Cloud Services or Silverline systems.
On September 12, 2025, the U.S. Department of Justice determined that a delay in public disclosure was warranted pursuant to Item 1.05(c) of Form 8-K. F5 is now filing this report in a timely manner.
As of the date of this disclosure, this incident has not had a material impact on the Company's operations, and the Company is evaluating the impact this incident may reasonably have on its financial condition or results of operations.
| Item 5.02 | Departure of Directors or Certain Officers; Election of Directors; Appointment of Certain Officers; Compensatory Arrangements of Certain Officers | ||||
On October 9, 2025, Michael Montoya resigned, effective immediately, from his position as a director of F5's Board of Directors (the "Board"), including his memberships on the Risk Committee and Nominating and Environmental, Social and Governance Committee. His decision to resign from the Board was not the result of any disagreement with the Company.
Mr. Montoya has been a valuable member of the Board and following his resignation from the Board, Mr. Montoya continued his service with the Company and has been appointed as F5's Chief Technology Operations Officer, effective October 13, 2025, reporting directly to the Chief Executive Officer (CEO), Montoya will lead the enterprise-wide strategy and execution to build and operate the Company with security at its core.
Pursuant to the recommendation of the Nominating and Environmental, Social and Governance Committee and in connection with Mr. Montoya's resignation, the Board reduced the size of the Board from eleven to ten members. As a result of such reduction, there are currently no vacancies on the Board.
| Item 7.01 | Regulation FD Disclosure | ||||
On October 15, 2025, F5 posted certain information regarding the incident on its MyF5 customer support site. A copy of that posting is furnished as Exhibit 99.1 to this report.
The information in this Item 7.01 and Exhibit 99.1 shall not be deemed to be "filed" for purposes of Section 18 of the Securities Exchange Act of 1934, as amended (the "Exchange Act"), or otherwise subject to the liability of that section, and shall not be incorporated by reference into any registration statement or other document filed under the Securities Act of 1933, as amended, or the Exchange Act, except as shall be expressly set forth by specific reference in such filing.
Posted In: FFIV
