Publicly Traded Blockchain Lender Figure Confirms Customer Data Breach
Decrypt
by Jason NelsonFebruary 14, 2026
AI-Generated Deep Dive Summary
Figure, a publicly traded blockchain lender, confirmed a customer data breach after an employee was targeted in a social engineering attack. Hackers accessed sensitive personal information, including names, addresses, dates of birth, and phone numbers, from approximately 2.5 gigabytes of stolen files. The hacking group ShinyHunters claimed responsibility, stating they published the data after Figure refused to pay a ransom. In response, Figure offered free credit monitoring to affected individuals and implemented additional security measures to prevent future incidents.
Social engineering attacks involve manipulating employees through deceptive tactics, such as phishing emails or fraudulent calls, to gain unauthorized access to corporate systems. In this case, the attacker exploited an employee’s account to download files containing customer data. Figure acted swiftly by blocking the attack and hiring a forensic firm to investigate the extent of the breach. While the company did not disclose the number of affected customers, ShinyHunters’ claim suggests a significant exposure of personal information.
The breach highlights the vulnerabilities in cybersecurity practices, particularly for companies relying on single sign-on providers like Okta. Other reported targets include Harvard University and the University of Pennsylvania, indicating a broader campaign by ShinyHunters. This incident aligns with a growing trend of cyberattacks targeting blockchain platforms and crypto-related businesses, with Chainalysis reporting over $17 billion in crypto stolen through AI-powered impersonation scams last year.
Figure’s response to the breach includes communicating with impacted parties and enhancing security protocols to protect customer data and funds. Despite the negative publicity, Figure’s stock price rose slightly on Friday but has fallen 37% over the past month. The company also announced plans for a secondary public offering of shares and a repurchase of Class A shares from underwriters.
This breach
Verticals
cryptoweb3
Originally published on Decrypt on 2/14/2026