- Figure confirms customer data breach after employee-targeted social engineering attack.
- ShinyHunters claims 2.5GB leak as lender offers credit monitoring to affected users.
- Breach emerges as Figure plans secondary stock offering and $30M share buyback.
Figure Technology, a publicly traded blockchain-based lender, disclosed that hackers accessed customer information after an employee was targeted in a social engineering attack. The company said the incident allowed an unauthorized actor to download a limited number of files containing personal data.
In a statement, Figure said it identified that an employee had been socially engineered, enabling an external actor to access files through the employee’s account. The company stated that it moved quickly to block the activity and retained a forensic firm to determine which files were affected.
The hacking group ShinyHunters claimed responsibility for the breach. According to TechCrunch, which reviewed samples of the data, the exposed files included customers’ full names, home addresses, dates of birth, and phone numbers. ShinyHunters alleged that Figure declined to pay a ransom and that approximately 2.5 gigabytes of data were published.
Figure did not confirm the volume of data involved but said it is notifying affected individuals and offering complimentary credit monitoring services.
Related: Coinbase Arrests Former Indian Employee in Major Data Breach Case
Broader Campaign and Industry Context
A member of ShinyHunters reportedly told TechCrunch that the breach formed part of a wider campaign targeting organizations that rely on the single sign-on provider Okta. Other alleged victims cited in the report included Harvard University and the University of Pennsylvania.
Social engineering attacks typically involve deceptive emails, phone calls, or messages designed to trick employees into granting system access or sharing credentials. A January report from Chainalysis found that more than $17 billion in cryptocurrency was stolen last year through AI-powered impersonation scams.
Data breaches have remained widespread. A December 2025 report from the Privacy Rights Clearinghouse recorded more than 8,000 notification filings tied to over 4,000 separate incidents, affecting at least 374 million people.
Company Background and Market Reaction
Founded in 2018, Figure operates its lending platform on the Provenance blockchain and focuses on home equity lines of credit. The New York-based company went public in September 2025 under the ticker FIGR, raising $787.5 million in an initial public offering that valued it at approximately $5.3 billion.
The breach disclosure coincided with Figure’s announcement of a proposed secondary public offering of up to 4,230,000 shares of its Series A Blockchain Common Stock. The company also plans to repurchase up to $30 million of Class A shares from underwriters.
Related: 16 Billion Passwords Leak in Largest Breach Ever—Apple, Google, Facebook Users at Risk
Disclaimer: The information presented in this article is for informational and educational purposes only. The article does not constitute financial advice or advice of any kind. Coin Edition is not responsible for any losses incurred as a result of the utilization of content, products, or services mentioned. Readers are advised to exercise caution before taking any action related to the company.
