Lego Details

    Organization Logo

    Lego

    Billund, Jutland21000 employees • Manufacturing

    https://www.lego.com
    Denmark

    Industry

    Manufacturing

    Security Incidents

    1

    Lego is a globally renowned toy company best known for its interlocking plastic bricks that allow users to build a vast array of models and structures. Founded in 1932 by Ole Kirk Christiansen in Billund, Denmark, the company's name is derived from the Danish phrase "leg godt," meaning "play well." Initially producing wooden toys, Lego transitioned to plastic in 1947 and introduced the iconic brick design in 1958, which remains compatible with current bricks. This design became the foundation of what would become one of the most popular and enduring brands in the world.

    Lego's primary offerin...
    Show more

    Security Incidents

    Lego Breach of Oct 2024
    Severity Score
    Low

    Type

    Data Breach

    Summary

    On October 5, 2024, the LEGO website was briefly compromised by cryptocurrency scammers who manipulated the site to advertise a fraudulent "LEGO Coin" token. This breach occurred at 9 PM EST and involved replacing the site's main banner with a promotional image for the fake token, which could be bought using Ethereum on the Uniswap platform. The breach was relatively short-lived, lasting approximately 75 minutes before the site was restored at 10:15 PM EST.

    The attack did not involve common tactics such as redirecting to a malicious site with a crypto drainer. Instead, it simply facilitated t...
    Show more

    Severity

    The cyber incident involving the unauthorized modification of LEGO's website to promote a bogus cryptocurrency token was a brief and poorly executed scam with minor financial impact. While the attack managed to temporarily replace the main banner of LEGO's official site, redirecting users to Uniswap to buy illegitimate "LEGO Coins," it did not compromise user accounts or include more malicious techniques like data theft or crypto drainers.

    The attack had a minimal financial impact as only a small number of people fell victim, resulting in losses of just a few hundred dollars. Considering the...
    Show more

    Impact

    The incident involving the brief hacking of the LEGO website was a targeted attempt by cryptocurrency scammers, who managed to alter the main banner to promote a fake LEGO-branded token. The unauthorized modification redirected users to the Uniswap platform rather than a malicious site, minimizing potential risks associated with asset theft. Due to the timely intervention, the website was restored in just over an hour, and no customer accounts or sensitive data were compromised.

    Although the attack was unsophisticated and did not result in widespread financial losses or data theft, it highlig...
    Show more

    KEEP YOUR ENVIRONMENT SECURE

    Weak credentials are the leading cause of breaches. Beyond Identity can help.

    See MFA exploits in action
    Watch how adversaries exploit companies in quick videos