Major Security Attack Targets Business Firewalls Worldwide

A large-scale hacking operation called FortiBleed has been targeting business security devices called FortiGate firewalls around the world. The attackers have been collecting stolen usernames and passwords, then using those credentials to break into company systems. This campaign started in February 2026 and has targeted over 430,000 firewalls globally. The hackers are financially motivated and appear to be Russian-speaking criminals.

This attack primarily affects businesses and organizations that use FortiGate firewalls to protect their networks. If you work for a company that uses these devices, your work login credentials may have been collected or compromised. However, this is not a direct threat to home internet users or personal devices. The bigger concern is that if your workplace is affected, your work email, work passwords, and access to company systems could be at risk.

If you use work systems or have a work email, take these steps immediately:

1. Contact your IT department or workplace technology support to ask if your organization uses FortiGate firewalls and whether they have been affected.
2. Change your work passwords immediately, especially if you have not changed them recently.
3. Enable two-factor authentication on all your work accounts if available.
4. Never reuse your work passwords on personal accounts.
5. Watch for suspicious emails that appear to come from coworkers or your company, as hackers may use stolen credentials to send fake messages. This attack highlights an important security principle: keep your work and personal digital lives separate. Never use the same password for work and personal accounts. Even when a breach happens at your workplace, your personal email, banking, and social media should remain safe if you have used different passwords. Make a habit of using unique passwords for every important account, and consider using a password manager to keep track of them all.