好的,我现在需要帮用户总结这篇文章的内容,控制在100个字以内。首先,我得仔细阅读文章,抓住关键信息。 文章主要讲的是金融科技公司Figure遭遇数据泄露事件。原因是员工被钓鱼攻击,导致有限数量的文件被窃取。黑客组织ShinyHunters声称对此负责,并公开了部分数据。这些数据包括个人身份信息,如姓名、地址、出生日期和电话号码,增加了身份欺诈的风险。 接下来,我需要将这些信息浓缩成一句话,不超过100字。要确保涵盖事件的主要原因、受影响的公司、数据泄露的内容以及可能的影响。 最后,检查一下是否符合用户的要求:直接描述内容,不使用“文章总结”之类的开头,并且控制在100字以内。 </think> 金融科技公司Figure因员工遭遇钓鱼攻击导致数据泄露,黑客窃取了部分文件并公开了约2.5GB的数据,包含申请人个人信息。公司已通知受影响用户并提供免费信用监控服务。 2026-2-14 17:10:33 Author: securityaffairs.com(查看原文) 阅读量:0 收藏
Fintech firm Figure disclosed data breach after employee phishing attack
Pierluigi Paganini
February 14, 2026
Fintech firm Figure confirmed a data breach after hackers used social engineering to trick an employee and steal a limited number of files.
Blockchain-based lending firm Figure confirmed a data breach after an employee fell victim to a social engineering attack. According to a company spokesperson, the incident allowed hackers to access and steal a limited number of files. The company disclosed the breach following inquiries and is assessing the impact.
— Dominic Alvieri (@AlvieriD) February 13, 2026Figure Technology Solutions has allegedly been breached by ShinyHunters.
Figure provides blockchain based HELOCs
(Home Equity Line Of Credit)Allegedly pii of all applicants has been stolen @Figure pic.twitter.com/nNGOK2GRLR
Figure Technology Solutions, Inc. is a US financial technology company. Established in 2018, it develops and operates blockchain-based platforms used in lending, capital markets, and asset management.
The company offers consumer and institutional lending products such as HELOCs, cash-out refinancing, DSCR loans, crypto-backed loans, and operates the Figure Connect credit marketplace.
On Friday, Figure spokesperson Alethea Jadick told TechCrunch that the security breach occurred after an employee was tricked in a social engineering attack, allowing hackers to steal “a limited number of files.” She said the company is communicating “with partners and those impacted” and offering free credit monitoring “to all individuals who receive a notice.”
Figure has started notifying affected individuals and is offering free credit monitoring to those who receive a breach notice. The company has not shared the number of impacted users or when the breach was discovered.
The cybercrime group ShinyHunters claimed responsibility for the breach on its dark web site, saying Figure refused to pay a ransom and releasing about 2.5GB of stolen data.
TechCrunch reviewed samples showing names, addresses, birth dates, and phone numbers, raising risks of identity fraud and phishing.
“A member of ShinyHunters told TechCrunch that Figure was among the victims of a hacking campaign that targeted customers who rely on the single sign-on provider Okta.” reported TechCruch.
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
(SecurityAffairs – hacking, data breach)
如有侵权请联系:admin#unsafe.sh