🚨 Polymarket Confirms: No Smart Contract Hack After $573K Incident
Polymarket has clarified that neither its platform nor UMA smart contracts were exploited, following reports of a security incident involving a leaked private key that led to around $573K in fund movement on Polygon.
🔍 What happened?
• A 6-year-old internal private key linked to deposit infrastructure was compromised
• Over $520K–$573K was transferred by an attacker
• On-chain analyst ZachXBT flagged the activity early
🛡️ Polymarket Response:
• All user funds confirmed safe
• Private key has been replaced and fully revoked
• Security upgraded to KMS-based key management system
• About $164K successfully frozen through coordinated response
📊 Key Insight:
Despite initial fears of a protocol exploit, the issue was operational security (old key exposure), not a smart contract vulnerability.
⚠️ This incident comes amid a broader surge in DeFi attacks — 19 hacks in May alone, with total losses reaching ~$38.2M.
💬 Community takeaway:
Security in crypto is no longer just about code — key management is becoming the real battleground.