A recent security breach at U.S.-based cybersecurity company F5 has been attributed to Chinese state-sponsored hackers, according to a report by Bloomberg News that cites individuals familiar with the investigation.
Both F5 and the U.S. Cybersecurity and Infrastructure Security Agency have yet to issue official statements regarding the matter, and the Chinese embassy in Washington also did not respond to Reuters’ inquiries.
Related story: FBI Probes Suspected Chinese Cyberattacks Targeting Major U.S. Law Firms
U.S. Officials Warn of Nation-State Threat
Earlier on Wednesday, U.S. government officials revealed that federal networks are under attack by an unidentified “nation-state cyber threat actor.”
This group is reportedly attempting to exploit security weaknesses in products developed by F5. The agency did not name a specific country, but the timing of the announcement coincides with the Bloomberg report linking the attack to China.
In a public statement, F5 confirmed that it had discovered “unauthorized access to certain company systems by a threat actor.”
The company emphasized that its operational systems remain unaffected and that there has been no disruption to customer services. However, the full scope of the breach is still being assessed, and internal investigations are ongoing.
According to the Bloomberg report, F5 representatives informed clients that the hackers had infiltrated the company’s systems for at least a year before being detected.
This revelation raises questions about how long the attackers may have had access to sensitive data and whether customer information or government-related systems were compromised.
F5 Chief Executive Officer Francois Locoh-Donou is said to be personally engaging with clients to explain the situation, including details about the timeline of the intrusion and the alleged connection to China-backed cyber operatives.
The CEO’s direct involvement suggests the company’s effort to maintain transparency and reassure partners amid growing concerns about foreign cyber interference.
Growing Cybersecurity Tensions Between the U.S. and China
The incident adds to a string of recent cybersecurity breaches tied to suspected Chinese state actors, which U.S. authorities have warned pose significant risks to both government and private-sector networks.
As geopolitical tensions continue to spill into the digital realm, experts caution that the sophistication and persistence of such cyberattacks highlight the urgent need for stronger defensive measures across critical U.S. infrastructure.
Read next: Massachusetts Hacker Sentenced to Four Years for Massive PowerSchool Data Breach