Polymarket Security Update: Multi-Party Effort Secures $164K in Stolen Funds, User Assets Unaffected

Security Incident and Coordinated Response

Prediction market platform Polymarket recently addressed a security incident involving a compromised private key. Through collaboration with external blockchain investigators and security entities, a significant portion of the misappropriated funds has been secured.

Substantial Funds Successfully Secured

In a public update, the platform's engineering lead confirmed that approximately $164,000 has been frozen as a result of this multi-party effort. This sum represents about 28.6% of the total amount (roughly $573,200) that was illicitly transferred during the incident.

Platform Integrity and User Safety Maintained

Polymarket has emphasized that the breach was isolated to a specific private key used for internal configurations. The core smart contracts powering the platform, along with all user funds, were never at risk. Trading and platform operations continued normally throughout the investigation.

Root Cause and Ongoing Efforts

An internal review traced the vulnerability to a private key that had been in use for nearly six years, managing internal deposit processes. This longstanding access point allowed for the sustained diversion of funds.

Teams are now focused on tracing the remaining assets and implementing enhanced security protocols for key management to fortify the platform's defenses against future threats.