Figure Technology, a blockchain-based lending company, confirmed to have experienced a data breach.
Friday, Picture Spokeswoman Alethea Jadick told TechCrunch in a statement that the breach began when employees were tricked into using a social engineering attack that allowed hackers to steal “a limited number of files.”
The statement said the company is “with its partners and those affected,” and is offering free credit monitoring “to everyone who receives notice.”
A spokeswoman for Figure did not respond to several specific questions about the breach.
Hacking group ShinyHunters took responsibility for the hack on the official website leaking the dark web, saying the company refused to pay the ransom, and publishing 2.5 gigabytes of stolen data.
TechCrunch saw part of the data, including customers’ full names, home addresses, dates of birth, and phone numbers.
A member of ShinyHunters told TechCrunch that Figure was among the victims hacking campaign which targets customers who rely on single sign-on provider Okta. Other victims of the campaign included Harvard University and the University of Pennsylvania (UPenn).
Techcrunch event
Boston, MA
|
June 23, 2026