Assets
Crypto Deposit
Fiat Deposit
Convert
Transfer
Withdraw
My vouchers
Fund history
Dashboard
Account Security
Identity verification
API Management
Transaction Report
Log out
Register
BTCC / BTCC Square / Cryptopolitan /
Polymarket Points Finger at Third-Party Provider After User Account Hacks

Polymarket Points Finger at Third-Party Provider After User Account Hacks

Author:
Cryptopolitan
Published:
2025-12-24 13:15:02
13
2

Security breaches strike again—this time hitting prediction market platform Polymarket. The company isn't taking the blame, instead pointing the finger squarely at a third-party service provider.

The Blame Game

Polymarket's official line? The vulnerability wasn't in their core systems. They claim a security flaw in an external provider's software opened the door. It's a classic move in the crypto playbook—outsource the risk, then outsource the responsibility when things go south. Saves on both infrastructure costs and reputational damage, apparently.

User Funds in the Crosshairs

While the exact number of compromised accounts remains unclear, the incident highlights a persistent weak spot. Users often think they're securing their crypto, but their safety is only as strong as the weakest link in a long chain of service providers. It's the digital finance equivalent of buying a top-tier lock for a door made of cardboard.

The Third-Party Problem

The entire crypto ecosystem is built on a house of cards made of other people's code. Wallets, oracles, node providers—the list of dependencies is endless. Each one represents a potential single point of failure. When security is a collective responsibility, accountability has a funny way of dissolving into thin air.

A Cynical Take

In traditional finance, they say 'it's not your keys, not your crypto.' In the modern prediction market scene, perhaps the adage should be: 'It's not your hack, not your problem.' Convenient, isn't it? The relentless pursuit of decentralization somehow always finds a way to centralize the blame.

The takeaway is as old as the internet itself: your security is only as good as your least secure partner. In an industry built on trustless systems, we still have to trust someone. And sometimes, that someone gets hacked.

Polymarket users confirm that their wallets have been hacked

The compromise news came last month. One of the senior traders stated that hackers have been using the Polymarket comment section to run a scam. As reported by Cryptopolitan, he claimed that users have lost over $500,000.

During the weekend, 23pds, SlowMist’s Chief Information Security Officer, retweeted a warning from a community user about a malicious code in a Polymarket copy-trading bot on GitHub, posing security risks. 

Reports of account hacks surfaced again earlier this week on X and Reddit, as affected users took to social media to detail their losses. 

“Today I woke up and see 3 attempts to login to polymarket — My device isn’t compromised, Google found nothing suspicious, all other services are fine. “So I went to Polymarket and realized that all my deals were closed and balance is $0.01,” the victim wrote.

Polymarket user accounts hacked, firm cites third-party vulnerability

Polymarket trader’s explanation of the bleach. Source: Reddit

Another user in the comment section claimed to have experienced a similar security breach, receiving three attempted login notifications before funds were drained from their Polymarket account. The victim claims that he did not click any links and had two-factor authentication enabled on their email.

In response, Polymarket acknowledged the security issue on its official Discord channel.

“We recently identified and resolved a security issue affecting a small number of users […]The issue was caused by a vulnerability introduced by a third-party authentication provider […] We will be in contact with impacted users,” Polymarket wrote. 

Polymarket’s AI support blames Polygon

According to one user, when he reached out to the Polymarket team, they answered that Polygon was responsible. “First line AI support told me it’s issue with Polygon what is obviously a bullshit. Then human gave me instructions how to check where my funds went to,” the trader wrote.

This follows news from Mustafa, a member of the Polymarket team, that the company plans to migrate from Polygon and launch an Ethereum Layer 2 network called POLY, which is the project’s current top priority.

Polymarket is gradually growing into a new behemoth with its entrance into the US market. The platform has recorded 419,309 active users this month , a total number of transactions is at 19.63 million, and the total trading volume sits at $1.538 billion.

Additionally, in 2025, the Polygon mainnet experienced 15 different network anomalies, maintenance events, or outages, some of which caused delays in Polymarket’s order matching. The most recent outage occurred on December 18. Also, the relatively weak ecosystem has objectively become a limitation. 

This, however, will affect the Polygon network. Defillama data shows that all positions on the Polymarket platform are worth about $326 million right now. This is a quarter of the $1.19 billion that is locked up on the Polygon network.

Additionally, Coin Metrics stated that Polymarket transactions used about 25% of Polygon’s overall network gas. Statistics on Dune also show that transactions related to Polymarket used about $216,000 in gas in November. Token Terminal statistics show that Polygon used about $939,000 in gas in the same month, which is approximately 23%.

Don’t just read crypto news. Understand it. Subscribe to our newsletter. It's free.

|Square

Get the BTCC app to start your crypto journey

Download on the App Store GEI IT ON Google Play

Get started today Scan to join our 100M+ users

Exchange for a better future

Products
Services
Guides
About Us
Terms & Agreement
Customer Service

Risk warning: Digital asset trading is an emerging industry with bright prospects, but it also comes with huge risks as it is a new market. The risk is especially high in leveraged trading since leverage magnifies profits and amplifies risks at the same time. Please make sure you have a thorough understanding of the industry, the leveraged trading models, and the rules of trading before opening a position. Additionally, we strongly recommend that you identify your risk tolerance and only accept the risks you are willing to take. All trading involves risks, so you must be cautious when entering the market.

The world’s longest-running cryptocurrency exchange since 2011 © 2011 - 2025 BTCC.com. All rights reserved

All articles reposted on this platform are sourced from public networks and are intended solely for the purpose of disseminating industry information. They do not represent any official stance of BTCC. All intellectual property rights belong to their original authors. If you believe any content infringes upon your rights or is suspected of copyright violation, please contact us at [email protected]. We will address the matter promptly and in accordance with applicable laws.BTCC makes no explicit or implied warranties regarding the accuracy, timeliness, or completeness of the republished information and assumes no direct or indirect liability for any consequences arising from reliance on such content. All materials are provided for industry research reference only and shall not be construed as investment, legal, or business advice. BTCC bears no legal responsibility for any actions taken based on the content provided herein.