Polymarket said it contained the compromise and removed the affected dependency after attackers injected a malicious script into its frontend. A third-party vendor compromise discovered Thursday allowed attackers to inject a malicious script into Polymarket’s frontend, affecting multiple users. Blockchain analyst Specter said the malicious script appeared to facilitate a phishing attack […]

The post Polymarket hit by $2.9M theft, users to be refunded appeared first on Activist Post.