[Polymarket Confirms User Funds Stolen Due to Third-Party Authentication Vulnerability] Decentralized prediction market platform Polymarket has confirmed that the recent user account theft incidents were caused by a security vulnerability in the third-party authentication service provider Magic Labs. Some users had their funds transferred without clicking phishing links or enabling two-factor authentication. The official statement indicates that the vulnerability has been fixed, and there is currently no ongoing risk. Affected users will be contacted individually, but the specific amount of losses and the number of affected users have not been disclosed.