Polymarket disclosed that hackers extracted roughly $3.1 million in its PUSD token from 11 user wallets on Saturday, as reported by blockchain intelligence firm AMLBot on X.
Incident Details
AMLBot traced the stolen assets to the Polygon network before they were instantly bridged to Ethereum, where the funds now sit in compromised accounts. The firm confirmed that it continues to monitor the affected Polymarket wallets for any further movement of crypto assets. Polymarket did not reply to a CoinDesk request for comment as of Saturday morning in the United States.
Polymarket’s Refund Strategy
Following public disclosure of the breach, Polymarket pledged full refunds to investors holding its native collateral and settlement token PUSD, which powers all trading on the decentralized prediction market. The platform explained on X that a third‑party vendor had been compromised, injecting malicious code into its frontend for certain users, and that the compromised dependency has since been removed. Polymarket is contacting every impacted user and processing refunds in full.
Security Community Findings
Security firm PeckShield reported on X that the attackers launched a phishing campaign aimed at Polymarket participants, initially estimating the stolen value at about 1,893 ETH. Specter Analyst echoed the phishing claim, noting estimated losses of $2.94 million at the time of its Thursday statement. One victim, identified as Ash on X, confirmed that his wallet was hacked without any clear