Over 269,000 F5 Devices Found Exposed Online After Massive Breach

A recent breach of F5 Networks’ infrastructure has left more than 269,000 devices exposed and vulnerable to attack.

Security researchers first detected unusual activity on F5’s management portal, prompting the company to issue an alert and patch critical vulnerabilities.

Regarding F5 network compromise (see https://t.co/8ivVy4lzgl):

We are sharing daily IP data on F5 exposures in our Device Identification report https://t.co/1uPaaDBimE (device_vendor set to F5).

~269K IPs seen daily, nearly half in US.

Geo breakdown: https://t.co/j029kIGasG pic.twitter.com/VP8l21veoz

— The Shadowserver Foundation (@Shadowserver) October 16, 2025

However, despite swift action, a daily snapshot from Shadowserver shows that nearly 269,000 unique IP addresses tied to F5 devices remain accessible to anyone on the internet.

Experts Warn of Growing Risk

In the hours after F5 released its emergency fix, security teams around the world began scanning for devices that had ...