
Figure Technology Solutions Breach
Feb 14, 2026
1,004,503 rows
What happened in the Figure Technology Solutions Breach?
DataBreach.com Team · February 15th 2026, 7:00 pm EST
In February 2026, Figure Technology Solutions, a leading fintech firm known for its blockchain-based Home Equity Lines of Credit (HELOCs), confirmed it fell victim to a targeted social engineering attack.
The incident occurred after a single employee was manipulated into providing access to their credentials, allowing a threat actor to bypass internal security perimeters. The breach has been linked to a wider campaign by the notorious hacking group ShinyHunters, which specifically targeted organizations utilizing Okta for single sign-on services.
According to data parsed from the subsequent leak, the breach exposed nearly 1 million records of sensitive personally identifiable information (PII). The exfiltrated dataset includes 1,004,503 dates of birth, 991,777 email addresses, and 941,184 physical street addresses. Additionally, over 925,588 phone numbers and 807,644 full names were compromised. While Figure has stated that customer funds and passwords remained secure, the sheer volume of contact and identity data published on the dark web after the company refused ransom demands poses a significant risk for secondary phishing and identity theft.
In response to the disclosure, Figure blocked the compromised account and engaged a third-party forensic firm to conduct a comprehensive audit of the accessed files.
The company is currently in the process of notifying affected partners and customers, offering complimentary credit monitoring services to those whose data was part of the 2.5 GB leak. Despite the security lapse, Figure’s leadership maintained that its core blockchain infrastructure remained intact, framing the event as a failure of human-centric security rather than a systemic technical flaw.










