F5 Labs

We explore the three general job roles and skill sets in cybersecurity: engineering defenses, testing security, and responding to cyberattacks.

Exploring OAuth exchanges for financial-grade API security in banking and financial services applications and the threat of authorization code interception attacks

Digital platforms are increasingly essential for banking, which means access control is an increasing focus for security. F5 Labs' Shahnawaz Backer writes for CXOtoday, describing some of the current thinking towards balancing access and convenience for users.

Insights into Genesis Marketplace, a black market trading in digital identity.

Vulnerability assessment of IoT devices in Ireland detailing the biggest threats, most at-risk and highly exposed devices.

In our 2020 edition of the Phishing and Fraud Report, we focus on how cybercriminals build and host phishing sites, the tactics they use to avoid detection, and how they’ve capitalized this year on the COVID-19 pandemic.

"What is phishing" is still a relevant question we're answering as the attack type and techniques evolve, victimizing even the most tech-savvy users.

The sheer scale of cybercrime attacks makes automated defenses a necessity. Shape's Shuman Ghosemajumder writes for VentureBeat, describing how the bad guys are also embracing automation, and what we can do about it.

Cybersecurity regulators have recently levied huge fines against financial institutions and healthcare organizations. Is this the new normal?

These skillsets can help you jump the cybersecurity skills gap by training security experts from the ground up.

Get Around the Cybersecurity Skills Gap by Nurturing Cyberdefenders Within Your Own Organization

Ransomware now includes data leakage, stealth, attack delay, anti-security, and ransomware as a service. CI Security’s John-Luke Peck shares his thoughts.

Why credential stuffing attacks persists, how they work, and how to prevent them.

Healthcare dramatically adjusted due to the COVID-19 pandemic. But parents around the world are much more concerned with education. F5 Labs' Preston Hogue writes for SecurityWeek, describing how the traditional classroom was turned on its head in a matter of weeks, and which of those changes will be...

Cybersecurity attacks surged during the pandemic, with large jumps in DDoS and password login attacks against online retailers and APIs.

The world of user experience and design can teach us to think differently about attackers, vulnerabilities, and users.

JWT brings performance to identity assertion and is being widely adopted, but it’s also garnering the attention of cybercriminals.

Precision agriculture leveraging IoT and API technology is both a great boon and a huge cybersecurity risk.

As COVID-19 shrinks IT security budgets, security teams must shift their spending and update operations plans to support this new normal.

Broken API authentication is leading to avoidable security incidents and unusual impacts. Learn what you can do to control the risk.