Polymarket confirms that a recent account takeover originated from a security vulnerability of a third-party authentication service, causing some users to have their cryptocurrency withdrawn.
An incident related to users registering through Magic Labs. Polymarket states that the vulnerability has been fixed and there is currently no ongoing risk, but has not disclosed the number of affected individuals and the total damage.
MAIN CONTENT
Cause: vulnerability in third-party authentication services.
Some accounts registered through Magic Labs have been completely drained of cryptocurrency.
The bug has been patched; Polymarket will contact each affected user.
What does Polymarket say about the cause and level of risk?
Polymarket stated that the incident stemmed from a vulnerability in a third-party authentication provider, not from user actions like clicking on a phishing link.
According to the description, some users registered through Magic Labs have been completely drained of cryptocurrency despite not clicking on phishing links and not enabling two-factor authentication. This indicates that the risk may arise from the login/authentication layer outside of Polymarket's core system, allowing attackers to access accounts without proactive interaction from victims.
Polymarket claims that the vulnerability has been fixed and there is currently no ongoing risk. However, the platform does not disclose the number of affected accounts or the total amount of cryptocurrency lost in the incident.
Response measures and public information
Polymarket will contact each affected user individually; the damage figures have not been disclosed.
In the official announcement, Polymarket emphasized that the incident was related to the third-party authentication service and has been resolved. The platform stated that it will proactively reach out to each affected case to address the aftermath, but did not provide details about the number of accounts that were drained or the scale of the damage.
The lack of disclosed figures limits the overall impact assessment, although Polymarket asserts that there is no current risk after patching the vulnerability.
Source: https://tintucbitcoin.com/polymarket-xac-nhan-bi-tan-cong-nguoi-dung-mat-tien/
Thank you for reading this article!
Please Like, Comment, and Follow TinTucBitcoin to stay updated on the latest news about the cryptocurrency market and not miss any important information!
$BTC $ETH $BNB $XRP $SOL
