Polymarket just landed at the intersection of two of the biggest risks for any financial platform: insider trading scrutiny and internal controls failure. Late last week, the U.S. House Committee on Oversight and Government Reform sent formal information requests to Polymarket and Kalshi as part of an inquiry into possible insider trading on prediction platforms. The committee sought records on how these exchanges verify user identity, enforce geographic restrictions, and detect suspicious patterns—basically, how effectively they police who is trading and what those traders might know before placing bets.
That was only half the story. On the same day, a separate breach emerged: Polymarket confirmed a private-key compromise affecting one of its own internal operational wallets. About $573,000 was moved out, but a portion—roughly $164,000—was frozen thanks to a joint effort involving on-chain investigator ZachXBT, Bitcoin Vietnam, and ChangeNOW. Polymarket stressed that the breach didn’t hit user balances or the event-market mechanism itself, but it did expose weak spots in how sensitive credentials are handled behind the scenes.
Taken together, governance is now the main event. Polymarket’s rapid growth put it on the map as a product story. But with U.S. lawmakers seeking records and on-chain investigators raising red flags, the company’s credibility now hinges on whether its controls can prevent abuses—or lock down losses fast when things go wrong.