Home / Technology / AI Scams Exploit Human Error in Major Breach
AI Scams Exploit Human Error in Major Breach
3 Mar
Summary
- Nearly 1 million individuals impacted by a Figure Technology Solutions data breach.
- Hackers exploited social engineering tactics, targeting an employee.
- Leaked data includes names, emails, phone numbers, and addresses.
A substantial data breach affecting nearly 1 million people has occurred at Figure Technology Solutions, a fintech lender operating on the Provenance blockchain. The incident, stemming from a social engineering attack on an employee, resulted in the download of sensitive personal information. This data includes names, over 900,000 unique email addresses, phone numbers, physical addresses, and dates of birth, creating a significant risk for identity theft and AI-powered phishing scams.
Attackers did not breach the blockchain's cryptography but instead targeted a human element, a tactic employed by groups like ShinyHunters. This breach underscores that even blockchain-native companies are vulnerable to human error. The exposed information can be used to craft highly convincing phishing emails and calls, impersonating lenders or banks to exploit individuals further.
In response, Figure Technology Solutions stated they acted quickly to block the activity, launched an investigation, and are offering complimentary credit monitoring to affected individuals. This event serves as a critical reminder that technological security alone is insufficient, and robust employee training against social engineering tactics is essential as more financial services move online.
