Polymarket Customers Lose Money After Website Security Breach

Polymarket, a prediction market platform, experienced a security breach that resulted in customers losing approximately $3 million. Hackers compromised a third-party vendor that provides services to Polymarket, then injected malicious code into the platform's website. This allowed them to steal funds from customer accounts. Polymarket has announced it will fully reimburse all affected customers.

If you have a Polymarket account, your funds may have been affected by this theft.

Even if you did not lose money, your account security may have been compromised when the malicious code was active on the website. The breach occurred through what security experts call a supply chain attack, where hackers targeted not Polymarket directly but a vendor that Polymarket uses.

If you use Polymarket:

1. Check your account immediately for any unauthorized transactions or missing funds.
2. Contact Polymarket support if you notice any losses, as they have committed to reimbursements.
3. Change your Polymarket password right away.
4. If you used the same password on other websites, change those passwords too.
5. Enable two-factor authentication on your Polymarket account if you have not already.
6. Review any other accounts connected to your Polymarket account, such as your connected cryptocurrency wallet. This incident demonstrates that even when you choose a service carefully, breaches can happen through their vendors and partners. To protect yourself: Never reuse passwords across different websites. Use a password manager to create and store unique, strong passwords for each account. Enable two-factor authentication on all accounts that offer it, especially financial accounts. Keep only the minimum amount of money necessary in online trading or cryptocurrency platforms. Store larger amounts in more secure locations like established banks or hardware wallets for cryptocurrency.