A data breach that hit blockchain-based financial giant Figure affected nearly 1 million customers, according to security researchers.
Last week, Figure acknowledged a data breach that allowed hackers to steal a “limited number of files” from its systems. The company did not say what type of data was stolen or how many customers were affected.
On Wednesday, Troy Hunt, a security researcher and creator of the data breach notification site Have I Been Pwned, analyzed data purportedly obtained from Figure and found it contained 967,200 unique email addresses associated with Figure customers.
The data also included the customer's name, date of birth, address, and phone number.
Mr. Figure did not respond to a request for comment on whether he disputes Mr. Hunt's findings.
Cybercrime group ShinyHunters told TechCrunch last week that it was responsible for the cyberattack targeting Figure. The group published 2.5 gigabytes of data allegedly stolen from Figure on a leak website. The hacker then shames the victim and releases the stolen data if they fail to extort the hacked company.