Fintech lending giant figure underscores data breach

Figure Technology, a blockchain-based lending company, has confirmed that it has suffered a data breach.

On Friday, Viger spokeswoman Alethea Jaddick told TechCrunch in a statement that the breach arose when an employee was tricked by a social engineering attack that allowed hackers to steal “a limited number of files.”

The company is “with partners and those affected” and is offering free credit monitoring “to all individuals who receive notification,” the statement said.

A spokesperson for the format did not respond to a series of specific questions about the violation.

Hacking group ShinyHunters claimed responsibility for the hack on its official dark web leak site, saying the company refused to pay a ransom, and posted 2.5 gigabytes of allegedly stolen data.

TechCrunch viewed a portion of the data, which included customers’ full names, home addresses, dates of birth, and phone numbers.

A ShinyHunters member told TechCrunch that Figure was among the victims of a hacking campaign targeting customers who rely on single sign-on provider Okta. Other victims of the campaign include Harvard University and the University of Pennsylvania (UPenn).