Hackers Leak Figure Customer Data After Social Engineering Breach

According to Coin Bureau, blockchain lending firm Figure Technologies confirmed a customer data breach following a targeted social engineering attack. Hackers did not exploit smart contracts or infrastructure. Instead, they manipulated an employee into granting access. As a result, attackers obtained sensitive customer information through compromised internal credentials.

Importantly, the breach did not involve financial losses or fund theft. However, the leaked information remains serious. Exposed data includes customer names, home addresses, birth dates, and phone numbers. While no bank details or crypto balances were accessed, this type of personally identifiable information still carries long-term risks. Identity theft and phishing attempts often follow such disclosures.

ShinyHunters Escalates After Ransom Refusal

The hacking group ShinyHunters publicly claimed responsibility for the attack. After Figure refused to pay a ransom, the group released the data online. This approach fits a familiar pattern. ShinyHunters has repeatedly targeted fintech platforms, leaking stolen data when extortion efforts fail. Therefore, this breach reflects pressure tactics rather than a one-off incident.

This incident highlights a growing weakness across crypto and fintech companies. Technical defenses continue to improve, yet human vulnerability remains a critical attack surface. In fact, research from Verizon shows that social engineering plays a role in the majority of modern data breaches. Attackers increasingly bypass code and instead exploit trust, urgency, and misinformation.

What This Means for Crypto Users

For customers, the risks do not end with confirmation statements. Stolen personal data can circulate for years. Consequently, security experts recommend monitoring credit activity and remaining cautious about unsolicited communications. Meanwhile, for crypto firms, the message is clear. Strong security systems mean little without continuous employee training and internal access controls.

As crypto adoption grows, attackers shift focus from exploits to extortion. This breach reinforces that reality. Regulation, compliance, and public trust all depend on data protection. Therefore, incidents like this raise broader questions about operational maturity across the industry.

The post Hackers Leak Figure Customer Data After Social Engineering Breach appeared first on Coinfomania.