Fintech lending giant Figure confirms data breach

Source: TechCrunch

Figure Technology confirms data breach

Posted: 1:02 PM PST · February 13, 2026

Image credit: Michael Nagle/Bloomberg / Getty Images

Figure Technology, a blockchain‑based lending company, confirmed it experienced a data breach.

On Friday, Figure’s spokesperson Alethea Jadick told TechCrunch in a statement that the breach originated when an employee was tricked by a social‑engineering attack, allowing hackers to steal “a limited number of files.”

The statement said the company is communicating with partners and those impacted, and offering free credit monitoring to all individuals who receive a notice.

Figure’s spokesperson did not respond to a series of specific questions about the breach.

The hacking group ShinyHunters claimed responsibility on its official dark‑web leak site, saying the company refused to pay a ransom and publishing 2.5 GB of allegedly stolen data.

TechCrunch reviewed a portion of the data, which included customers’ full names, home addresses, dates of birth, and phone numbers.

A member of ShinyHunters told TechCrunch that Figure was among the victims of a broader [hacking campaign](https://cloud.google.com/blog/topics/threat-intelligence/expansion-shinyhunters-saas-data- theft) that targeted customers using the single sign‑on provider Okta. Other victims of the campaign include Harvard University and University of Pennsylvania (UPenn).