The Lego website was hacked to promote a cryptocurrency scam.

On the night of October 4th, users visiting the Lego website encountered a banner displaying golden coins with the company's logo, announcing the launch of a "Lego coin" and promising "secret rewards" for those who purchased it. However, in reality, Lego was not introducing an official cryptocurrency. Reports indicated that the purchase link redirected to an external site selling “LEGO Tokens” via Ethereum, suggesting that the site had been compromised by malicious individuals using the brand to execute a cryptocurrency-related fraud.

Members of the Lego community on Reddit pointed out that the incident occurred overnight at the company's headquarters. In response, Lego acted quickly, removing the unauthorized banner and the corresponding links. Currently, the collaboration banner with Fortnite has been restored, and the "buy now" link redirects to the appropriate collection.

Lego confirmed that no users suffered account compromises and that they successfully identified the cause of the problem. Additionally, the company mentioned that they are implementing preventive measures to ensure that similar situations do not occur in the future, although they did not provide specific details about the cause or the measures to be taken.

In their official statement on October 5, 2024, the company clarified: "On the night of October 4th, an unauthorized banner briefly appeared on LEGO.com. This was quickly removed, and the issue has been resolved. No user accounts have been compromised, and customers can continue to shop normally. The cause has been identified, and we are implementing measures to prevent this from happening again."