stay up to date

Stay up to date with F5 Labs on social media.

There was an error signing up.
Thank you, your email address has been signed up.

F5 Labs mission

We process global application threat data from F5 and our partners into actionable intelligence. We analyze and share the Who, What, When, Why, How, and What’s Next of cyber attacks to benefit the security community.


Malicious hackers, hacker groups, nation states, regions


DDoS attacks, web application exploits, malware, phishing, spamming


Continual or seasonal attacks, spikes during specific days/times


Zero-day exploits, unpatched vulnerabilities, social engineering


Financial gain, espionage, notoriety, cyber warfare

What's Next

Threat findings and predictions for the future

Meet the teams

To process raw application data into actionable threat intelligence, multiple F5 security teams contribute their insights and expertise. These are the people behind F5 Labs articles, reports, and blogs.
Threat Research

Threat Research

Monitors the dark net for the latest malware variants and threat actor behavior, collects global attack data, and creates threat monitoring tools. F5 Labs publishes the team’s intelligence about which malware is targeting whom, how the malware works, what attack trends the team is seeing, and more.

Security Operations Center (SOC)

Security Operations Center (SOC)

Protects customers from malware, phishing, and web fraud with proactive, 24x7 real-time global threat monitoring. F5 Labs threat intelligence leverages the SOC’s real-time analysis of current threat actors and attack trends.

Security Incident Response Team (SIRT)

Security Incident Response Team (SIRT)

Manages the receipt, investigation, and public reporting of security vulnerability information related to F5 products, platforms, and partners. F5 Labs threat intelligence draws on this team’s insights into reported vulnerabilities.

Platform Security

Platform Security

Attempts to exploit F5 products to identify vulnerabilities, define CVEs, and develop patches before malicious hackers do. F5 Labs publishes the threat modeling intelligence and targets the team gathers during its vulnerability research.

Silverline Security Research

Silverline Security Research

Stays on top of DDoS attack and mitigation trends, web application vulnerability scanning and exploit methodologies, and resulting threat actors. The team shares this global intelligence with F5 Labs for awareness stories on trends and management techniques.

Technical Security Marketing

Technical Security Marketing

Researches global trends in encryption and scans 100% of SSL/TLS sites quarterly to understand the impact on threat visibility, and feeds the trending data back to product development in the form of requirements. F5 Labs leverages this research for quarterly and annual reporting on global encryption usage and exploit trends. 

Stay up to date