Polymarket Confirms Hackers Stole User Funds

▼ Summary
– Polymarket confirmed that hackers stole funds from some users after a third-party vendor breach injected malicious code into its website.
– The company stated it has contained the incident and is refunding affected victims in full.
– Blockchain monitoring firm PeckShield reported a phishing campaign targeting Polymarket users, with around $3 million in cryptocurrency stolen.
– A blockchain analyst claimed funds were taken from over 11 victims, matching similar losses reported on social media.
– This hack follows a separate controversy where Polymarket paid creators for deceptive videos showing fake winning bets, prompting the company to audit its promotional content.
Prediction market platform Polymarket has confirmed that hackers managed to steal funds from an unspecified number of users following a security failure at a third-party provider. The company disclosed the breach in a post on X on Thursday, explaining that the incident occurred when a vendor compromise allowed malicious actors to inject harmful code into Polymarket’s website “for some users.” The platform stated it has “contained” the situation and is now reaching out to those affected, promising to “refund them in full.”
As of Thursday afternoon, the precise details of the attack remain unclear. When contacted by TechCrunch, Polymarket spokesperson Connor Brandi verified that the breach did result in the theft of user funds but declined to elaborate further, offering no response to specific inquiries about the incident.
Around the same time as Polymarket’s announcement, blockchain security firm PeckShield flagged a phishing campaign on X that appeared to be targeting Polymarket users. According to their analysis, the attackers had made off with approximately $3 million in cryptocurrency. A separate blockchain analyst reported similar losses, noting that the stolen funds came from more than 11 victims.
Polymarket allows users to settle bets and receive payouts in cryptocurrency, which has made it a prime target for such exploits. Over the past two days, at least two individuals on social media have publicly claimed that their Polymarket accounts were drained.
This hack adds to a turbulent week for the company. On Sunday, an investigation revealed that Polymarket had paid online creators to produce deceptive videos showing them winning large, fabricated bets. In response, the firm said it would review and audit its promotional content going forward.
(Source: TechCrunch)




