PANews reported on December 24th that, according to The Block, decentralized prediction market platform Polymarket confirmed that the recent user account theft incident stemmed from a security vulnerability in a third-party authentication service provider. Some users who registered through Magic Labs had their funds emptied without clicking phishing links or enabling two-factor authentication. The official statement said the vulnerability has been fixed and there is currently no ongoing risk. Affected users will be contacted individually; the specific amount of loss and the number of affected users were not disclosed.