Lego's website was hacked to promote a fraudulent cryptocurrency called 'Lego Coin.' The incident lasted 75 minutes before being resolved, with no user accounts compromised.
Lego's website was recently compromised by hackers who used the platform to promote a fraudulent cryptocurrency called "Lego Coin." The incident, which occurred on October 4, 2024, lasted approximately 75 minutes before the unauthorized content was removed. The scam promised users secret rewards for purchasing the fake coin, redirecting them to a suspicious external site.
On the night of October 4, visitors to Lego's official website were greeted with a banner advertising the launch of a new cryptocurrency, "Lego Coin." The banner claimed that users could buy the coin and unlock secret rewards. Clicking on the banner redirected users to an external site selling "Lego tokens," which raised immediate concerns among the Lego community.
The breach was first reported by users on social media platforms, including Reddit, where Lego enthusiasts quickly shared screenshots of the fraudulent advertisement. The incident occurred at approximately 1:00 AM UTC, coinciding with early morning hours in Denmark, where Lego's headquarters is located.
Lego acted swiftly to address the situation. Within about 75 minutes, the unauthorized content was removed, and the website was restored to its original state. In a statement, Lego confirmed that no user accounts had been compromised and assured customers that they could continue shopping without concern.
The company stated, "The issue has been resolved. No user accounts have been compromised, and customers can continue shopping as usual. The cause has been identified, and we are implementing measures to prevent this from happening again."
This incident is part of a broader trend of increasing cryptocurrency scams targeting well-known brands. Scammers often exploit the popularity of established companies to lure unsuspecting victims into purchasing fake tokens or providing sensitive information.
In recent months, various high-profile scams have emerged, including the hijacking of social media accounts belonging to reputable organizations. For instance, the official account of OpenAI was recently compromised to promote a fake cryptocurrency, highlighting the growing sophistication of these scams.
The hacking of Lego's website serves as a reminder of the vulnerabilities that even major brands face in the digital age. As cryptocurrency scams continue to proliferate, both companies and consumers must remain vigilant. Lego's prompt response to the incident demonstrates the importance of cybersecurity measures in protecting brand integrity and customer trust.
As the digital landscape evolves, it is crucial for companies to stay ahead of potential threats and ensure that their platforms remain secure against malicious actors.
