Polymarket: Recent user account hacking incidents were caused by a third-party vulnerability.
TL;DR
Polymarket confirms recent user account thefts were due to a third-party authentication service vulnerability, now fixed with no ongoing risk. Affected users will be contacted individually, but loss details are undisclosed.
Tags
Odaily Odaily reports that decentralized prediction market platform Polymarket has confirmed that recent user account thefts stemmed from a security vulnerability in a third-party authentication service provider. Some users who registered through Magic Labs had their funds emptied without clicking phishing links or enabling two-factor authentication. The company stated that the vulnerability has been fixed and there is currently no ongoing risk. Affected users will be contacted individually. The specific amount of loss and the number of affected users were not disclosed. (The Block)