3 Million Stolen in Polymarket Platform Hack: Investors Lose Millions

Anuj June 26, 2026
www.news4hackers.com-3-million-stolen-in-polymarket-platform-hack-investors-lose-millions-3-million-stolen-in-polymarket-platform-hack-investors-lose-millions
Post Views: 9

Decentralized prediction market platform Polymarket has announced plans to reimburse users impacted by a security breach.

Reimbursement and Breach Announcement

Polymarket, which facilitates cryptocurrency-based trading on real-world event outcomes, reported that a third-party vendor was compromised, leading to the insertion of a malicious script into its frontend infrastructure. The incident was identified on Thursday, with the company stating that the affected dependency has been removed and the issue contained. Polymarket confirmed that affected users will receive full compensation but did not specify the number of individuals impacted or the exact cryptocurrency value stolen.

Details of the Security Incident

The breach was disclosed by Blockchain security firm PeckShield, which reported that approximately $3 million in pUSD, Polymarket’s USDC-backed stablecoin, was pilfered through a phishing operation. The stolen funds were transferred from the Polygon blockchain to Ethereum, where they were converted into roughly 1,893 ETH. A blockchain analyst corroborated the financial loss, estimating the total at nearly $3 million, with at least 11 victims affected.

Blockchain security firm PeckShield disclosed that approximately $3 million in pUSD, Polymarket’s USDC-backed stablecoin, was pilfered through a phishing operation. The stolen funds were transferred from the Polygon blockchain to Ethereum, where they were converted into roughly 1,893 ETH. A blockchain analyst corroborated the financial loss, estimating the total at nearly $3 million, with at least 11 victims affected.

Third-Party Supply Chain Vulnerability

The breach highlights vulnerabilities in third-party supply chains, as the malicious script was introduced via an external vendor. While Polymarket emphasized containment measures, the lack of transparency surrounding the incident has raised concerns about the platform’s security protocols. The phishing campaign reportedly targeted users to gain access to sensitive systems, enabling the unauthorized transfer of funds.

Security Concerns and Expert Opinions

PeckShield’s analysis underscores the growing risks associated with decentralized finance (DeFi) platforms, where exploits can rapidly escalate due to the immutable nature of blockchain transactions. No official statement has been released by Polymarket detailing the technical specifics of the breach, such as the methods used to compromise the vendor or the timeline of the attack. The absence of clarity on these aspects complicates efforts to assess the full extent of the damage.

Ongoing Investigation and Future Updates

Security experts have noted that such incidents underscore the importance of rigorous third-party risk management and continuous monitoring of digital assets. As the investigation progresses, further details about the attack vector, affected systems, and potential regulatory implications are expected to emerge. SecurityWeek has sought additional information from the company regarding the stolen amount and affected user count, with updates pending.



About Author

Anuj

See author's posts

More Stories

www.news4hackers.com-1-4-million-affected-by-phishing-attack-on-healthcare-firm-xsolis-1-4-million-affected-by-phishing-attack-on-healthcare-firm-xsolis

1.4 Million Affected by Phishing Attack on Healthcare Firm Xsolis

Anuj June 24, 2026
www.news4hackers.com-f5-unveils-ai-security-platform-to-uncover-secure-shadow-ai-f5-unveils-ai-security-platform-to-uncover-secure-shadow-ai-1

Phishing in Microsoft 365: How Cybersecurity Threats Hide in Daily Workflows

Anuj June 23, 2026
sophisticated-gmail-phishing-attacks

Sophisticated Gmail Phishing Attacks Spreading Via WhatsApp Links

daksh kataria January 19, 2026 0

Latest Cyber Security News

www.news4hackers.com-proof-x401-introduces-open-protocol-for-ai-agent-identity-authorization-proof-x401-introduces-open-protocol-for-ai-agent-identity-authorization

Proof x401 Introduces Open Protocol for AI Agent Identity & Authorization

Anuj June 26, 2026
www.news4hackers.com-macos-flaw-lets-non-admin-users-disable-crowdstrike-and-kandji-security-tools-macos-flaw-lets-non-admin-users-disable-crowdstrike-and-kandji-security-tools

macOS Flaw Lets Non-Admin Users Disable CrowdStrike and Kandji Security Tools

Anuj June 26, 2026
www.news4hackers.com-nebulock-secures-25m-for-ai-driven-contextual-cybersecurity-solutions-nebulock-secures-25m-for-ai-driven-contextual-cybersecurity-solutions

Nebulock Secures $25M for AI-Driven Contextual Cybersecurity Solutions

Anuj June 26, 2026
www.news4hackers.com-insider-threats-how-cybersecurity-needs-to-go-beyond-traditional-measures-insider-threats-how-cybersecurity-needs-to-go-beyond-traditional-measures

Insider Threats: How Cybersecurity Needs To Go Beyond Traditional Measures

Anuj June 26, 2026
www.news4hackers.com-oem-software-security-risks-how-to-protect-your-business-oem-software-security-risks-how-to-protect-your-business

OEM Software Security Risks: How to Protect Your Business

Anuj June 26, 2026
en_USEnglish
en_USEnglish