LEGO removes fake token scam after homepage hack

LEGO Group’s website was briefly compromised on 5 October, with a scam promoting a fake ‘LEGO Coin’ token appearing on the homepage. The message encouraged users to purchase the token in exchange for ‘secret rewards’ but redirected them to a phishing site. The scam was removed after about 75 minutes, and LEGO confirmed that no user accounts had been compromised.

LEGO has since assured customers that the issue has been resolved and steps are being taken to prevent future incidents. Despite earlier hints in 2021 about entering the NFT space, LEGO has not officially pursued any crypto-related ventures.

This incident highlights the ongoing threat of cryptocurrency scams, which saw $127 million stolen from victims in the third quarter of 2024, with September alone accounting for $46 million in losses.

Epic and Lego: how to protect children in Metaverse?

Epic Games (operated by Fortnite) and Lego have started a partnership to create a virtual space aimed at kids. The two companies will combine their respective expertise in online gaming.

A new element is that, at the outset of their partnership, they set three policy and governance principles for virtual spaces for children:

  • protect children’s right to play by making safety and well-being a priority;
  • safeguard children’s privacy by putting their best interests first;
  • empower children and adults with tools that give them control over their digital experience.

Safety and the rights of children are likely to be the first area where governance and policy rules for Metaverse will be developed.