Connect with us

Hi, what are you looking for?


Popular Lego marketplace went offline after a “ransom” demand

BrickLink, the unofficial online Lego parts marketplace, is back online after several days of downtime due to a cybersecurity incident that apparently targeted some merchant accounts. The company said it received a “threat and ransom demand” last Friday, presumably in regard to company or user data, leading it to shut down the site “out of an abundance of caution.”

The site has been detecting “limited suspicious activity” since mid-October, where unauthorized sellers fraudulently attempted to collect money through unrealistically discounted listings.

BrickLink says a “relatively small” amount of accounts may have been compromised but does not see any evidence that its systems were breached. It says “credential stuffing” occurred, where bad actors input compromised passwords from other sources to try to break into owners’ accounts on different sites.

Lego reviewer and blogger Jay Ong, who writes for Jay’s Brick Blog, posted that they received a message from BrickLink that all users must change their passwords. Ong says they were assured their BrickLink account was not compromised. Notably, BrickLink does not yet offer two-factor authentication, although it plans to in the future.

You May Also Like


Amazon’s cloud business AWS launched a chat tool called Amazon Q, where businesses can ask questions specific to their companies. Announced during a keynote...


Uber notched another win in its effort to win over the beleaguered taxi industry, announcing a plan to start listing London’s famed black cabbies...


Ayaneo, which is mostly known for making handheld gaming consoles, just fully revealed the new Retro Mini PC AM01 after teasing it a few...


It turns out that Warner Bros. Discovery actually won’t be pulling Looney Tunes from Max. On Monday, in a 4:02PM ET email with the...