F5 Labs

Sensor Intel Series: June 2025 CVE Trends

Sensor Intel Series: May 2025 CVE Trends

Investigating a schema parsing concern in the parquet-avro module of Apache Parquet Java.

Discover the latest CVE trends and a new campaign targeting websites hosted in EC2 instances on AWS.

How much do scraper bots affect your industry?

The Bots Pyramid of Pain: a framework for effective bot defense.

Uncovering the true scale of persistent bot activity, and the advanced techniques that bot operators use in order to remain hidden from bot defenses.

BotPoke comes to the foreground yet again.

Discover how to mitigate CVE-2024-53900 and CVE-2025-23061, which expose Node.js APIs to remote attacks.

An examination of CVE trends from February 2025 scanning data.

Scans intensify, looking for a critical vulnerability in TBK DVR devices.

TP-Link draws the attention of the US Government.

How expired domains and improper DNS management can lead to severe security risks like MitM attacks, fraudulent TLS/SSL certifications, and more.

“I never think of the future. It comes soon enough.”

Nearly 50% of observed traffic is looking for accidentally exposed data.

Our top talker changes up their infrastructure, and CVE-2023-1389 continues to hold the top spot.

What can last year’s Black Friday shopping trends teach us about expected attacker behavior during the 2024 holiday shopping season?

The growing capability of AI content poses three very real threats to modern elections. We explain each, and take a glimpse at a possible solution to the growing AIpocalypse.

Plus a few interesting changes in the CVEs we track, and some notes on just what kinds of malware stagers we see.

Overall scanning for CVEs we track is down, but one specific scanner caught our attention. We dig into what it’s doing.