ShinyHunters Exposes Customer Information to Public Blockchain Lender

Figure Technologies Data Breach: ShinyHunters Exposes Public Blockchain Lender’s Customer Information

A confirmed a serious security issue. Figure Technologies, known for its blockchain-based loans, admitted to a customer data breach. This happened after hackers deceived an employee. The news has raised major concerns about data security in the crypto world.

On Friday, Figure Technologies said one of its employees fell for social engineering. This allowed hackers to access certain client files. The group called ShinyHunters took credit for the attack. They said Figure did not pay the ransom and therefore leaked 2.5 gigabytes of data.

Reports show that the stolen files contained sensitive information such as full names, home addresses, dates of birth and phone numbers. This type of leak can lead to identity theft and scams.

“We recently identified that an employee had been the victim of social engineering, allowing an actor to upload a limited number of files through their account,” Figure said in a statement.

The company acted quickly. They stopped this bad activity and hired experts to verify what was taken.

Social engineering: the weak link in cybersecurity

Social engineering involves tricking people into giving them access. They use fake emails, calls or messages to deceive workers. In this case, the attacker obtained the login information or approved fake requests.

This is a big deal in technology and crypto. A report from Chainalysis noted that more than $17 billion worth of cryptocurrencies were stolen last year thanks to AI-powered scams that imitate real people. These attacks are getting smarter.

• Fake Emails That Look Real
• Phone calls pretending to be bosses
• Messages asking for passwords

Companies train their staff, but a simple mistake can cause enormous damage.

Who are ShinyHunters and their biggest plan?

ShinyHunters is a well-known hacker group. They target large companies. In this breach, they hit Figure as part of a larger attack against users of Okta, a login service. Other targets included Harvard University and the University of Pennsylvania.

ShinyHunters often demands money for not disclosing data. Figure refused, so the information was made public. This shows how hackers are now preying on service providers to hit multiple victims at once.

About Figure Technologies: A Leader in Blockchain Lending

Figure started in 2018 in New York. They use the Provenance blockchain for their lending platform. They focus on home equity lines of credit (HELOC). This makes lending faster and more secure using blockchain technology.

In September 2025, Figure went public as FIGR. Their IPO raised $787.5 million and valued the company at $5.3 billion. They mix traditional finance and blockchain.

But now this tests their security claims. Customers entrust them with personal and financial data.

Data breaches in 2025: a growing threat

Violations are everywhere. In 2025, more than 8,000 reports were sent to regulators. These came from more than 4,000 incidents. At least 374 million people have been affected, according to Privacy Rights Clearinghouse.

In crypto and blockchain, the stakes are higher. Stolen data can lead to wallet hacks or fake loans. The scenario highlights the risks even for state-owned companies using cutting-edge technologies.

Figure’s response to the breach

Figure takes action. They talk about it to the partners and people concerned. New security measures are coming.

“We offer free credit monitoring to everyone who receives a notice,” the company said. “We continuously monitor accounts and have robust safeguards in place to protect customer funds and accounts.”

This helps ease worries. Free credit checks help people detect fraud. But trust takes time to rebuild.

Impact on stocks and new announcements

Despite the news, FIGR stock rose 3.57% to $35.29 that day. But it fell 37% last month. For the moment, the markets seem to ignore this breach.

Importantly, Figure announced a secondary offering on the same day. They plan to sell up to 4.23 million shares of Series A Blockchain common stock. They are also aiming to repurchase up to $30 million of Class A shares. This shows that it is business as usual.

Lessons for Crypto Users and Businesses

This teaches the key points:

1. Train employees: Regular exercises against social engineering.
2. Use multi-factor authentication: Additional login steps block many attacks.
3. Monitor third parties: Check services like Okta often.
4. Have breach plans: A rapid response limits the damage.
5. Credit monitoring: Offer it to customers quickly.

For users, freeze credit and monitor accounts. In the field of blockchain lending, verification platforms offer optimal security.

What’s next for figure and blockchain security?

Figure will face scrutiny from regulators. Laws require prompt reporting of violations. Investors look at how they solve problems.

Blockchain promises secure financing, but human errors hurt. Companies must combine technology and people training. As hacks multiply, only the strongest will last.

This violation reminds us: no system is perfect. Stay vigilant in crypto.

Conclusion

This shows the risks associated with blockchain lending. ShinyHunters exposed customer data via a simple trick. Figure answers well, but the crypto world needs to learn. Protect your information and choose secure platforms.

DisclaimerBlockmanity is a news portal and does not provide any financial advice. Blockmanity’s role is to inform the cryptocurrency and blockchain community about what’s happening in this space. Please do your conduct due diligence before making any investment. Blockmanity will not be responsible for any loss of funds.