Attackers exploited a third-party vendor compromise to inject malicious code into Polymarket’s frontend, triggering a phishing flow that ultimately drained funds from at least 11 user wallets, according to blockchain analyst Specter. Specter estimated the stolen amount at $2.94 m...
- Polymarket experienced a $2.94 million theft due to a third-party vendor compromise that led to malicious code injection and a phishing attack on user wallets.
- The platform has contained the incident, removed the affected dependency, and will fully refund all affected users.
- This event contributes to a record-breaking quarter for crypto security incidents, with private key compromises and phishing-style attacks being significant concerns.
Topics: Infrastructure providers, Legal regulatory, Risk default, Tokenization platforms, Enforcement actions litigation, Smart contract vulnerabilities
Tags: #polymarket #exploit #theft #phishing #thirdpartyvendorcompromise #userfunds #refund #defi #securitybreach #blockchainanalyst
No comments:
Post a Comment