Forecasting platform polymarket is back in the spotlight, this time because hackers are using the platform’s comments section to deceive.
This was reported by a trader with the nickname 25usdc. He wrote on social media that hackers had used the comments section. polymarket for fraud, and so far users have lost more than $500,000.
They say, «Why don’t you trade on private markets? polymarket»It’s always much more profitable there!» wrote 25usdc.
According to him, it all starts with them buying shares of «Yes» and «No» on the market from two different accounts. This way, their comments remain accessible even when the «Owners» filter is enabled. After that, they publish their website URL in encrypted form.
The URL redirects the unsuspecting user to a page with the logo. polymarket and requests a login via email. After confirmation, a new window appears, mimicking CloudFlare, asking for confirmation.
«Eventually, they collect the data, log everything in your system, and send the archive to their server. They then use this data to log into your accounts and steal your money,» 25usdc wrote.
He also noted how meticulously the scammers operate: for example, they cover their tracks by frequently changing wallets, obfuscating their tracks at every stage, and even shutting down the server that sends payloads and receives logged data when there is no active victim.