Particle.news
Download on the App Store
4 ARTICLES
·
last wk.

Figure Data Breach Exposes Nearly 1 Million Customer Records

Have I Been Pwned's analysis pegs the leak at roughly 967,000 exposed records, providing the first clear scale of the incident.

Image
Michael Tannenbaum, chief executive officer of Figure Technology Solutions Inc., during the company's initial public offering at the Nasdaq MarketSite during the in New York, US, on Thursday, Sept. 11, 2025. (Image: Michael Nagle/Bloomberg/Getty Images)
Image
Data breach

Overview

  • Troy Hunt’s Have I Been Pwned identified 967,200 unique email addresses in the dataset, alongside names, dates of birth, postal addresses, and phone numbers.
  • ShinyHunters claimed responsibility and published roughly 2.5GB of stolen Figure data on its leak site on February 13.
  • Figure says an employee was socially engineered, allowing access to a limited number of files, and attributes the intrusion to a credential-harvesting tactic.
  • The company reports it blocked the activity, engaged an external forensic firm, began notifications, and is offering complimentary credit monitoring to those alerted.
  • The breach surfaces during a sensitive period for the Nasdaq-listed lender following its IPO and a secondary stock offering process.