Lego's website was hacked to promote a fake cryptocurrency, leading to concerns about online security. The company responded quickly, assuring customers that no accounts were compromised.
Lego's official website was compromised on the evening of October 4, 2024, when a fraudulent banner appeared, promoting a non-existent cryptocurrency called "Lego Coin." The banner claimed that the coin was officially launched and promised secret rewards for purchases. However, clicking the banner redirected users to an external site selling "LEGO Tokens" using Ethereum, indicating a clear scam.
The incident raised concerns among Lego enthusiasts, especially given the timing, which coincided with the anniversary of a previous hack affecting the Bricklink marketplace. Fortunately, Lego acted swiftly to remove the unauthorized content, restoring the site to its normal state shortly after the breach.
On October 4, visitors to Lego.com were greeted by a banner featuring golden coins adorned with the Lego logo, misleadingly announcing the launch of a "Lego Coin." This banner was not an official promotion but rather a result of unauthorized access to the website. Users who clicked on the banner were directed to a marketplace selling "LEGO Tokens" for Ethereum, a clear indication of a crypto scam.
Lego responded quickly to the incident, removing the unauthorized banner and links within a short time frame. The company reassured customers that no user accounts had been compromised and that they could continue shopping safely. In an official statement, Lego confirmed that they had identified the cause of the breach and were taking steps to prevent similar incidents in the future.
The Lego community expressed concern over the hack, particularly due to its timing. Many users took to social media and forums to discuss the incident, sharing screenshots of the fraudulent banner. The quick response from Lego was praised, but the event raised questions about the security of the company's online platforms.
While Lego has not disclosed specific details about the security measures being implemented, the company emphasized its commitment to protecting user data and preventing future breaches. Customers are encouraged to change their passwords as a precautionary measure, even though no accounts were compromised during this incident.
The hacking of Lego's website serves as a reminder of the vulnerabilities that even well-established companies face in the digital age. As scams become increasingly sophisticated, it is crucial for companies to maintain robust security protocols and for consumers to remain vigilant when navigating online platforms. Lego's swift action in this case may help restore trust among its customer base, but the incident highlights the ongoing challenges in cybersecurity.
