Figure Technology confirmed a customer data breach, saying an employee was targeted in a **social engineering** incident that allowed an attacker to download a limited set of files.

### What happened

- The hacking group **ShinyHunters** claimed responsibility and alleged it released stolen data after Figure refused to pay a ransom.

- A media report cited by Decrypt said sample files appeared to include **full names, home addresses, dates of birth, and phone numbers**.

- Figure said it moved quickly to stop the activity and hired a forensic firm to investigate.

### Why it matters for crypto and fintech

Crypto-adjacent and tokenization-focused lenders handle sensitive identity and financial data—making them high-value targets. Social engineering remains one of the most common ways to bypass technical defenses, and can cascade into account takeover attempts or targeted scams.

### Company context

Figure is a publicly traded lender that operates a loan platform tied to the **Provenance blockchain**. The company said it is offering **complimentary credit monitoring** to individuals who receive a notice.

**What to watch next:** confirmed scope of impacted users, whether additional systems were accessed beyond downloaded files, and any follow-on fraud attempts targeting Figure customers.