Prop Firm Data Breach

Password Reset Panic at Topstep and MyFundedFutures Was More Than a Routine Security Notice

At first, it looked like routine maintenance. A forced password reset. A warning email. A few confused traders asking questions. But once Topstep and MyFundedFutures both moved to alert users within the same window, the story stopped looking ordinary. It started looking like something had gone badly wrong somewhere in the futures prop ecosystem.

Topstep publicly stated on June 6, 2025 that it had received threats of a purported attack on its systems. The firm said it had no indication of an actual breach or attack at that time, but still forced password resets for all trader accounts out of caution. That alone was enough to set off alarms. Firms do not reset every user password for no reason, especially not in a business where account access, personal data, and trading continuity are all mission critical.

MyFundedFutures did not publicly confirm that its own systems had been breached either. But reporting from the same period shows that the firm warned traders about numerous unconfirmed reports that one of the largest futures prop firms had sensitive data compromised by a malicious hacker group. At the same time, MyFundedFutures reportedly told users it had verified that its own information had not been compromised. That is a revealing detail. It suggests the fear inside the industry was serious enough that a major firm felt the need to warn users even without a confirmed self disclosure of direct compromise.

That is where the tone of the story changes. This was not just a technical inconvenience. It was a trust event. FxVerify reported that traders began comparing notes almost immediately after the password reset emails landed, including posts from trader Brian Stonk, who said he received a Topstep password reset email he did not request. Reddit discussions from the same period show the split clearly. Some users suspected a real hack, while others argued it may have been a defensive reset tied to system changes or a migration of authentication tools. In other words, nobody trusted the surface explanation, and that vacuum was filled by fear.

In markets built on leverage, speed, and remote access, that kind of fear matters. If login credentials are exposed, even partially, the risk is not limited to one platform. Password reuse can turn one weak point into a chain reaction across brokers, prop firms, email accounts, and payment tools. That is exactly why these alerts hit so hard. The immediate question was not whether a reset email was annoying. The real question was what, exactly, triggered it and how much data may already have been circulating in the dark before traders were told to lock things down. The public record from June 2025 never fully answered that.

What makes the story even darker in hindsight is what happened later. In January 2026, Finance Magnates reported that some Topstep users were notified that their personal information may have been subject to unauthorized access during a cyber incident tied to September and October 2025. Topstep Support later said that incident did not involve a breach of Topstep systems and instead affected a small number of traders who had reused passwords exposed on non Topstep sites. That later disclosure does not prove the June 2025 scare was a confirmed breach. But it does show that cyber risk around the Topstep user base was not imaginary, and that account security concerns around the platform did not simply vanish after the first wave of password resets.

So what is the real story here. The sharpest reading is also the safest one. June 2025 was not a confirmed smoking gun breach for both firms. But it was a live security scare serious enough to trigger forced password resets at Topstep, industry wide warnings connected to MyFundedFutures, and a wave of community suspicion strong enough to damage confidence immediately. In this business, where traders are asked to trust firms with identity data, payment details, and platform access, that kind of panic is not a side issue. It is the story.

The most uncomfortable part is this. Once a firm says there is no confirmed breach, the public usually relaxes. But traders should know better. Sometimes the first sign of a real security problem is not a formal admission. It is a forced reset, vague wording, and a community that senses the official version is incomplete. That was the atmosphere around Topstep and MyFundedFutures in June 2025, and that is why the episode still reads less like maintenance and more like a warning shot.

Editorial source note: This article was independently written for editorial purposes based on publicly available reporting, company statements, and public social posts. It does not reproduce source wording.

Sources reviewed: FxVerify report dated June 9, 2025. Topstep public statement on X dated June 6, 2025. Prop Traders Weekly industry report dated June 9, 2025. Finance Magnates reporting dated January 5, 2026 for later context on Topstep related user exposure notices.