Hackers stole personal and contact information from nearly 1 million accounts after breaching Figure Technology Solutions in a social engineering attack, with Have I Been Pwned reporting data from 967,200 accounts dating to January 2026. Extortion group ShinyHunters claimed responsibility and posted roughly 2.5GB of stolen loan applicant data, and the incident is linked to broader vishing campaigns targeting SSO providers and multiple high‑profile organizations. #Figure #ShinyHunters
Keypoints
- Figure Technology Solutions suffered a social engineering breach that exposed personal and contact data from 967,200 accounts.
- Exposed records include email addresses, names, phone numbers, physical addresses, and dates of birth.
- Extortion group ShinyHunters claimed responsibility and published about 2.5GB of allegedly stolen data on a dark web leak site.
- The attack is associated with voice‑phishing (vishing) campaigns that target SSO accounts at providers like Okta, Microsoft, and Google.
- Compromised SSO access can allow attackers to reach connected enterprise services such as Salesforce, Microsoft 365, Google Workspace, Slack, and Dropbox.