Imagine waking up one morning, excited to check out the latest LEGO sets on their official website, only to find a flashy banner promoting something called “LEGO Coin.”
This wasn’t just any ordinary promotion; it promised secret rewards for those who bought in. Intrigued, you might have clicked the “Buy Now” button, only to be redirected to a phishing site designed to steal your personal information.
Scary, right?
LEGO’s official website was briefly compromised by hackers who used it to promote a fraudulent cryptocurrency called “LEGO Coin.”
The incident occurred on October 5th at 1:00am UTC and lasted for approximately 75 minutes before the unauthorized content was removed.
The timing was particularly unfortunate for LEGO, as it was 3:00am in Billund, Denmark, where their main office is located. This meant that the incident occurred in the dead of night, delaying the company’s response.
Visitors to the site were greeted with a banner advertising the “LEGO Coin” token, which promised “secret rewards” to those who purchased it.
Clicking the “Buy Now” button redirected users to a phishing site designed to steal their information. Fortunately, LEGO acted swiftly to remove the scam from their homepage.
However, LEGO acted swiftly once they became aware of the breach. The fraudulent message and the “Buy Now” link were quickly removed from their homepage.
Although LEGO hasn’t made a public statement about the incident, they did communicate with Engadget, assuring that the scam was only visible for a short period and that no user accounts were compromised.
They stated, “The issue has been resolved. No user accounts have been compromised, and customers can continue shopping as usual. The cause has been identified and we are implementing measures to prevent this from happening again.”
The first reports of the hack came from a moderator of the “lego” subreddit, known as “mescad.” This individual was among the first to notice the suspicious activity and alert the community.
The Brick Fan, a popular LEGO news site, also reported on the incident, highlighting the fake promotion of the “LEGO Coin” token before it was taken down.
Cointelegraph and some other prominent sites also reported the incident on their website hours after it occurred.
Well, next time you see an enticing offer online, take a moment to verify its authenticity. It could save you from falling victim to a scam.
You can also join our Telegram community where you can learn all you want to know about the cryptocurrency space, defi, web3, and airdrop opportunities and also have access to live AMA sessions from time to time, then click the button below to join Dipprofit Telegram Community For Free Now