PUSD hack drains $3.1M from 11 Polymarket wallets
The refund pledge buys goodwill, but a third-party vendor breach, repeated phishing incidents, and a federal marketing investigation now converge on the prediction market at the same time.
Every Zipp story tagged #SecurityBreach, newest first.
The refund pledge buys goodwill, but a third-party vendor breach, repeated phishing incidents, and a federal marketing investigation now converge on the prediction market at the same time.
Not a smart-contract bug — a single developer laptop compromised by malware exposed the admin hot wallet plus six Safe owner keys across Ethereum and BSC, draining over $31M.
The breach wasn't a novel attack — it was a textbook custody failure on a project backed by Pantera and Jump Crypto, and the recovered token price is still a third of pre-breach levels.
The exploit traced through 17 wallets hit the H token harder than the dollar loss — and a founder-confirmed private-key compromise means the attack vector was a single point of failure, not a…
The October 2024 exploit drained $51M across Arbitrum and BNB Chain, and 18 months later the omnichain money market says it cannot raise fresh capital — another casualty in a record-breaking year for…
The vulnerability is still being traced, but the on-chain losses are confirmed — more than $660,000 is already gone, and the attacker is still pulling funds.
An admin key leak let an attacker mint unbacked eBTC on Monad; the team's $816K loss is contained, but a 955-eBTC burn and an active phishing warning mean the cleanup is not over.
An ongoing attack on the Verus-Ethereum bridge has pulled roughly $11.58M out so far, with Blockaid's exploit detection catching the live drain rather than a post-mortem tally.
After weeks of blaming Kelp DAO, LayerZero took ownership of a 1-of-1 verifier config that turned into a single point of failure — and competitors are already collecting the refugee business.