DevCentral ICMYI - January 2025

DevCentral publishes new content constantly, and it’s easy to miss the latest from F5’s technical user community with all that turnover. So here’s a monthly round-up of DevCentral news, content, and events—in case you missed it!

New and Notable

• AppWorld 2025 is just around the corner! We're so excited to see the DevCentral community IRL in Las Vegas!
• Community at AppWorld 2025 - This year Buu Lam , Jason Rahm , and Aubrey King will be in the Hub, camera ready, recording ad-hoc interviews and sharing AppWorld with the rest of the world on the?DevCentral YouTube channel and LinkedIn!
• AppWorld 2024 Badges on DevCentral - If you attended AppWorld in 2024 keep an eye out for a new badge on DevCentral!
• Help F5 Transform the BIG-IP Administrator Certification - Help make sure that the certifications our candidates attain are in line with the high standards and integrity on which our certification program was established.

Content Round-Up

AI

• AI Security - LLM-DOS, and predictions of 2025 and beyond - Explore the latest on LLM-Denial of Service attacks and predictions for AI security in 2025.
• AI Friday Episode 3: Snowstorms, Truth Terminal, MCP & AGI Insights - This week's AI Friday explores everything from Texas snowstorms and the intriguing Truth Terminal story to the ambitious potential of Model Context Protocol (MCP).
• AI Friday Ep.4: AI in Coding, Red Teaming, and the Future of AGI | In-Depth AI Insights - This week's AI Friday delves into the evolving role of AI in coding, red-teaming lessons from Microsoft's AI security report, and the challenges posed by AI in open-source projects and social engineering attacks.
• F5 AI Gateway - Secure, Deliver and Optimize GenAI Apps - Discover how the F5 AI Gateway enhances security, optimizes traffic, and supports responsible AI adoption by addressing key threats and challenges outlined in the OWASP Top 10 for LLM Applications, ensuring sustainable growth in an AI-driven world.
• DeepSeek, Gemini, Stargate Program & AI Innovations In HealthCare | AI Friday Ep.5 - This week's AI Friday episode explores advancements in AI technology and its transformative impact on healthcare, along with exciting updates on DeepSeek, Google's Gemini, and the Stargate Program.

Security Insights

• Cyber security 2024 summary and 2025 forecasts from the news - In this week's cybersecurity summary, Editor Lior from F5 SIRT reviews the unprecedented security challenges of 2024—including a record spike in vulnerabilities and major incidents—while forecasting the rise of AI-driven threats and defenses for 2025.
• Advent Calendar, IPA alert, Active Cyber Defense, call ChatGPT - In this week's update, discover essential cybersecurity insights from the F5 SIRT, including alerts for holiday network threats, the introduction of Japan's "Active Cyber Defense" bill, and the latest advancements in ChatGPT’s communication capabilities.
• Soldier Arrested, Crypto Malware, Wash. St. Sues T-Mobile, US Treasury Breach, LDAPNightmare PoC - This week's security roundup features a U.S. Army soldier's arrest for telecom extortions, alarming statistics on wallet-draining malware for 2024, a lawsuit against T-Mobile by the Washington State Attorney General over a major data breach, revelations of a Chinese APT targeting U.S. Treasury intel, and a newly released PoC exploit for CVE-2024-49113, underscoring the urgent need for improved cybersecurity measures.
• A Very Chinese New Year - Kick off the new year with a look back at the key cybersecurity developments from January 5–11, 2025, including expert insights on Chinese APTs, the latest vulnerabilities, and a preview of the upcoming VulnCon 2025 event.
• US Tiktok ban, Salt and Twill, over Half billion in crypto stolen - In the inaugural edition of F5 SIRT's "This Week in Security" for 2025, editor ArvinF highlights critical updates including the U.S. Supreme Court's ruling on TikTok's potential ban, a successful FBI-led operation against the PlugX malware, the ongoing threat from Chinese cyber espionage groups, and significant ransomware attacks, underscoring the urgent need for enhanced cybersecurity measures and vigilance.
• Subaru, Mastercard, TikTok and Roundup - This week's newsletter features insights from Kyle Fox on Subaru's security vulnerabilities, a revelation about Mastercard's DNS misconfiguration, the unexpected return of TikTok in the U.S., and a roundup of significant tech and cybersecurity news including a mistaken asteroid and a major ransomware breach impacting millions.

F5 Distributed Cloud

• VMware NSX to Red Hat OpenShift Virtualization Migration with F5 Distributed Cloud - Discover how to seamlessly transition workloads from VMware with NSX to OpenShift Virtualization using F5 Distributed Cloud with our comprehensive guide, offering advanced L3 and L7 services while maintaining original IP addresses for a smooth migration process.
• F5 Distributed Cloud JA4 detection for enhanced performance and detection - Learn how to implement JA4+ network fingerprinting methods in F5 Distributed Cloud to enhance threat detection and prevention across various use cases, including malware identification and session hijacking defense.
• Ensuring Secure Data Interoperability in Government Agencies: Challenges and Solutions - In an era where sophisticated adversaries challenge data security, this article emphasizes the critical need for government agencies to adopt a strategic framework that ensures secure data interoperability, enabling efficient information sharing while maintaining robust protection against breaches.

NGINX

• Installing and Locking a Specific Version of F5 NGINX Plus - Ensure system stability and compliance by following our guide to installing and locking a specific version of NGINX Plus on various Linux distributions, allowing for controlled upgrades and consistent deployment across your infrastructure.
• Announcing F5 NGINX Ingress Controller v4.0.0 - We're excited to announce the release of F5 NGINX Ingress Controller v4.0.0, featuring support for NGINX R33, host-based routing for Layer 4 applications, enhanced logging capabilities, and more—check out our full release notes on GitHub!

About DevCentral

DevCentral is an F5 community of technical users dedicated to learning, exchanging ideas, and solving problems—together. Join us to share F5 technology and application security best practices.?