Figure Technologies hit by ShinyHunters data leak — 2.5GB of customer data published
Figure Technologies, a blockchain lending firm that went public in 2025, suffered a social‑engineering data breach after attackers from the ShinyHunters group manipulated an employee and published roughly 2.5 GB of files on dark‑web channels following a refused ransom demand. TechCrunch-reviewed samples show exposed personal customer information — full names, home addresses, dates of birth and phone numbers — data that can facilitate identity theft, targeted phishing and financial fraud. Figure has confirmed the incident, begun notifying affected users and is offering free credit‑monitoring to those notified, but has not disclosed the total number of impacted users or the exact breach detection date. The incident highlights persistent human‑targeted security risks at crypto firms and may undermine confidence in Figure’s recent products, including the OPEN on‑chain equity trading platform built on the Provenance blockchain. Recommended trader actions: enable two‑factor authentication, change passwords, monitor credit reports and remain cautious of phishing campaigns. (Keywords: data breach, Figure Technologies, ShinyHunters, identity theft, blockchain security)
Bearish
The breach is likely bearish for Figure’s token-linked ecosystem and for trader sentiment around products tied to the company. Although no specific cryptocurrency token price is directly mentioned, the leak undermines trust in Figure’s platform services (including the OPEN on‑chain equity product on Provenance) and raises counterparty‑risk concerns. Short term: expect heightened selling pressure on any Figure‑linked tokens or rapid withdrawals from the platform as users react to potential identity and fraud risks and seek to reduce exposure. Market volatility may spike for related projects as traders reassess risk. Long term: reputational damage can slow user growth and institutional adoption of Figure’s services, pressuring on‑chain liquidity and reducing demand for associated tokens unless the company demonstrates prompt, transparent remediation and stronger security controls. Overall, the immediate market reaction will lean negative until clarity on affected user counts, the extent of compromised assets, and corrective measures is provided.