Polymarket Users Lose $3M in Supply Chain Attack
Photo: BleepingComputer
Quick answer
Polymarket will reimburse $3 million to users after a supply chain attack compromised a third-party vendor, allowing hackers to inject malicious scripts into the platform.
Prediction market platform Polymarket suffered a major cyberattack, resulting in users losing approximately $3 million. Hackers exploited a vulnerability in a third-party vendor to inject malicious scripts into the platform’s frontend. The incident underscores the growing threat of supply chain attacks in the IT sector.
The company confirmed that all affected customers will receive full reimbursement for their losses. Polymarket representatives stated the breach stemmed from the compromise of an external partner, granting hackers access to the platform’s frontend. The identity of the compromised vendor remains undisclosed.
Cybersecurity experts warn that supply chain attacks are becoming more frequent and sophisticated. These incidents highlight the urgent need for stronger third-party security controls, including multi-factor authentication and regular system audits.
Common questions
- What happened to Polymarket?
- Hackers breached the platform through a third-party vendor’s vulnerability, injecting malicious scripts into the interface. Users lost $3 million, but the company will fully compensate affected clients.
- What is a supply chain attack?
- A cyberattack where threat actors compromise a less secure partner or vendor to gain access to the primary system. Such attacks are becoming increasingly common in the IT sector.
- How can companies protect against such attacks?
- Businesses should enforce stricter third-party security controls, implement multi-factor authentication, and conduct regular security audits to mitigate risks.
Dzen feed: /feed/dzen.xml · RSS: /feed.xml