Polymarket Denies Dark Web “Data Breach” of 300,000 Records
Polymarket has denied a dark web claim that a hacker (“xorcat”) stole over 300,000 records, including about 10,000 unique user profiles. The screenshots alleged exposure of full names, profile images, proxy wallet information, and base addresses, and suggested more leaks could follow.
Polymarket said the material was not the result of an unauthorized intrusion. It argued the same data is already publicly accessible through its on-chain records and open API endpoints, calling the incident a case of public scraping reframed as a “database dump.”
On credibility, Polymarket pointed to its bug bounty program: it launched a live program on April 16 and reported hundreds of submissions by Wednesday, contradicting the attacker narrative that no bounty existed.
Security researchers also expressed skepticism, saying the pattern looks more like harvesting public information than a true Polymarket data breach.
For crypto traders, the denial lowers immediate “exchange breach” panic risk, but the episode keeps attention on API/data exposure and how fast dark web narratives can move sentiment in prediction-market headlines.
Neutral
This is primarily a reputational/security optics story rather than confirmed theft. Polymarket’s denial and explanation (public on-chain data + open API access) reduce the probability of an actual Polymarket data breach driving broad market contagion. The reported bug bounty activity also weakens the attacker’s credibility.
However, traders should not ignore the underlying risk signal: API/data exposure claims remain a recurring theme across Web3 platforms, and dark web headlines can still spark short-term sentiment swings and risk-off behavior around prediction-market infrastructure. Net impact on price is therefore likely limited and short-lived, making the expected effect neutral.