Web Application & API Protection blog posts(21)
F5 Distributed Cloud Services: Security innovation built for operational scale
Learn how the latest upgrade to F5 Distributed Cloud Services advances AI driven security while strengthening the operational foundations teams need to run at scale.
By Derek Yee
Scanning for what matters most: OWASP Top 10 2025
The OWASP Top 10 2025 identifies the most critical web app security threats.
By Sebastian BrandesScanning for what matters most: OWASP Top 10 2025
The OWASP Top 10 2025 identifies the most critical web app security threats.
By Sebastian Brandes
Five tiers of antifragile cyber resilience turn practice into outcomes
Learn how five antifragile resilience tiers transform disruption into adaptive behaviors that constrain failures and strengthen hybrid multicloud architecture.
By Griff Shelley, Colin Clauset, Mark Menger
From dashboard fatigue to operational excellence: Why XOps needs F5 Insight for ADSP
Learn how F5 Insight for ADSP lays the visibility foundation for XOps—turning fragmented signals across applications and infrastructure into actionable intelligence.
By John Maddison
Independent tests reveal F5 provides strong protection against traditional, emerging, and targeted AI app attacks
In independent, third-party tests by SecureIQLab, F5 AI Guardrails earned a 98.36% total security score and F5 WAAP alongside F5 AI Guardrails earned a total security score of 97.09%.
By John Maddison
Securing web apps without complexity: How F5’s AI-powered WAF transforms WAF security
See why AI-powered WAF in F5 Distributed Cloud WAF is a true game changer for web application firewalls—addressing the need for higher threat protection and fewer false positives.
By Erin Verna, Debrup Ghosh
Four highlights from F5’s flagship AppWorld conference
Missed this year’s F5 AppWorld conference? Get the latest F5 news here.
By John Maddison
API security without compromise: Introducing flexible new discovery options with F5 API security
F5’s expanded API discovery options are designed to deliver maximum flexibility and meet organizations where they are.
By Ian Dinno
F5 AI Remediate: Closing the AI security gap
F5’s new offering, F5 AI Remediate, shortens the path from AI vulnerability discovery to deployable protection.
By Jessica Brennan
A sneak peek into F5 BIG-IP v21.1: AI security, PQC, and software enhancements
Learn how F5’s BIG-IP v21.1 delivers AI security and PQC-readiness.
By Tom Atkins
A new playbook for hybrid multicloud cyber resilience
Learn why traditional resiliency models fall short and how modern cyber resilience, using an antifragile approach, turns disruption into an advantage.
By Griff Shelley, Colin Clauset, Mark Menger
MazeBolt + F5: Partners for automated DDoS protection
Integrating MazeBolt DDoS testing technologies into the F5 Application Delivery and Security Platform (ADSP) delivers fully automated, AI-powered DDoS protections.
By Rona Rom Amram
Why BOLA’s "authorization gap" requires a runtime strategy
Broken object-level authorization (BOLA) is not a bug but a failure of access controls. Learn how a three-tiered runtime strategy can close the gap and protect data.
By Chaim Peer, Ian Dinno
F5 again recognized with six TrustRadius Buyer’s Choice Awards in 2026
F5 was once again honored with six TrustRadius Buyer’s Choice Awards—a testament to our continued commitment to delivering trusted, high-value solutions.
By Jay Kelley
From sprawl to strategy: Why a sound strategy for application delivery and security is key
This accumulation of disconnected tools comes at a high price. See how a unified approach to application delivery and security reduces your total cost of ownership.
By Greg Maudsley
Why take a platform approach?
Learn why a converged platform for application delivery and cybersecurity offers the best path to simpler operations and stronger protection.
By Greg Maudsley
OPSWAT and F5: Taking network traffic security to the next level
Integrating OPSWAT file security technologies into the F5 platform provides critical defenses to keep complex networks and sensitive data secure.
By George Prichici
F5 NGINX STIGs: A security blueprint for public sector and regulated environments
Learn how F5 NGINX STIGs provide a security blueprint for U.S. DoD and regulated environments, helping you achieve compliance while building robust, zero-trust infrastructure with enhanced visibility ...
By Bill Church
Rein in API sprawl with F5 and Google Cloud
Find out how F5 and Google Cloud can help you secure and manage your ever-increasing API integrations.
By Beth McElroy
WAAP Evolution: From ‘Web App and API’ to ‘Web, API, and AI’ Protection
WAAP evolves to include AI protection. Learn why web, API, and AI security are crucial in our latest research.
By Lori Mac Vittie