Lego's Website Compromised by Cryptocurrency Scam

Lego's website experienced a security breach on Oct. 4 when the hacker replaced the site's banner with a fraudulent cryptocurrency advertisement.

Lego's website was hacked on Oct. 4 to display an ad for a fake cryptocurrency, which was being sold on an external site. The ad, which appeared on the site's banner, showed illustrated golden coins with the Lego logo and promoted the launch of a "Lego coin." It urged users to buy the token, promising them "secret rewards."

The hacked site read:

Our new Lego coin is officially out! Buy the new Lego coin today and unlock secret rewards!

When visitors clicked the banner, they were redirected to an external site selling "Lego tokens," The Brick Fan reported. The breach occurred overnight at Lego's Denmark headquarters and was quickly noticed by users on the Lego subreddit.

Lego quickly removed the unauthorized content and restored the original banner. The company confirmed the following day that no user accounts had been compromised.

"On 5 October 2024 (October 4 evening in the U.S.), an unauthorised banner briefly appeared on Lego.com. It was quickly removed, and the issue has been resolved," Lego said in a statement to Engadget.

"No user accounts have been compromised, and customers can continue shopping as usual. The cause has been identified and we are implementing measures to prevent this from happening again," the statement adds.

The above is the detailed content of Lego's Website Compromised by Cryptocurrency Scam. For more information, please follow other related articles on the PHP Chinese website!