• Hackers breached Figure Technology Solutions, stealing personal data of nearly 1 million accounts. • Attack was a social‑engineering phishing that tricked an employee into giving access. • Stolen data includes 967,200 email addresses, names, phone numbers, addresses, DOB. • ShinyHunters extortion group claimed responsibility, leaked 2.5 GB on the dark web. • Figure, a blockchain‑native fintech, hasn’t fully disclosed impact, but partners include banks and credit unions. • Have I Been Pwned confirmed breach, data posted online in February 2026. • Similar breaches by ShinyHunters at Canada Goose, Panera, Betterment, etc.
Article Summaries:
- Hackers have stolen the personal and contact information of nearly 1 million accounts after breaching the systems of Figure Technology Solutions, a self-described blockchain-native financial technology company. Founded in 2018, Figure uses the Provenance blockchain for lending, borrowing, and securities trading, and has unlocked over $22 billion in home equity with over 250 partners, including banks, credit unions, fintechs, and home improvement companies. While the blockchain lender didn’t publicly disclose the incident, a Figure spokesperson told TechCrunch on Friday that the attackers stole
- Hackers breached Figure Technology Solutions, a blockchain‑native fintech, and stole personal data from nearly one million accounts. The breach, attributed to a social‑engineering attack that tricked an employee into giving access, involved the theft of email addresses, names, phone numbers, physical addresses and dates of birth for 967,200 users. The data, dating back to January 2026, was publicly posted online by the ShinyHunters extortion group, which also claimed similar attacks on other high‑profile companies. Figure has confirmed the incident but has not yet disclosed the full scope or the specific impact on individual customers.
Sources: