Odaily Planet Daily News: The Polymarket platform has detected and resolved a security issue affecting a 'small number of users', caused by a vulnerability introduced by a third-party authentication provider. Previously, several Polymarket users reported on Reddit and X platform that their accounts experienced unusual logins, funds were cleared, and trading positions were forcibly closed.
The affected users are primarily those who logged in via email through Magic Labs. Some victims reported that despite enabling two-factor authentication (2FA) and their devices not being illegally compromised, their accounts were still stolen after multiple unusual login attempts. Polymarket officials confirmed that the vulnerability has been fixed, and there is currently no ongoing risk; the platform is directly contacting the affected users. Earlier, in late 2024, the platform also experienced some assets being stolen from users logging in through Google due to a third-party plugin vulnerability.