Polymarket Suffers $2.9M Theft, Users Promised Refunds After Frontend Compromise
Polymarket Suffers $2.9M Theft, Users Promised Refunds After Frontend Compromise
The prediction market platform Polymarket experienced a significant security breach, resulting in a $2.9 million theft. Attackers injected a malicious script into the platform's frontend, compromising user funds. Polymarket has confirmed that the vulnerability has been contained and the affected dependency removed. Crucially, the platform has committed to fully refunding all users impacted by the theft.
Polymarket Reports $2.9 Million Theft
Prediction market giant Polymarket disclosed a security incident involving the theft of approximately $2.9 million. The breach occurred due to the injection of a malicious script directly into the platform's frontend interface. This sophisticated attack allowed unauthorized access, leading to the unauthorized transfer of funds.
Upon detection, Polymarket acted swiftly to contain the compromise. The company announced that it successfully identified and removed the malicious script and the underlying affected dependency responsible for the breach. This prompt response aims to prevent further exploitation and secure the platform's integrity.
In a move to protect its user base, Polymarket has pledged to fully refund all individuals whose funds were affected by the theft. This commitment underscores the platform's dedication to user security and trust, aiming to mitigate the financial impact on its community despite the significant loss incurred.