DeFi Protocol Venus Suspends Operations After Detecting Suspicious Transaction

Venus Protocol paused operations after a phishing attack drained millions from a user wallet, though experts confirmed the platform itself remained uncompromised.

XMR

CORE

193d ago

Fact Check

The statement is directly confirmed by a primary source, the official Venus Protocol X account, which stated they were aware of a 'suspicious transaction' and that 'Venus is currently paused'. This is corroborated by multiple recent news articles reporting the suspension of operations for the same reason.

Summary

Venus Protocol temporarily suspended its services on September 2 following a phishing attack that stole nearly $27 million from a single wallet. The stolen assets included $19.8 million in vUSDT, $7.15 million in vUSDC, $146,000 in vXRP, $22,000 in vETH, and 285 BTCB. Security firm Cyvers reported the incident, clarifying that the funds remain unswapped in the attacker’s contract. Investigations revealed the attacker exploited pre-approved wallet authorizations. Experts emphasized that Venus’ smart contracts were not breached, but a hijacked frontend or poisoning attack might have enabled the theft. Estimates of the total loss vary, with some suggesting it may be under $20 million.

Terms & Concepts

vUSDT: A tokenized version of Tether (USDT) used within the Venus Protocol for lending and borrowing.
vUSDC: A tokenized representation of USD Coin (USDC) within the Venus Protocol ecosystem.
Phishing Attack: A cyberattack method where victims are tricked into granting malicious permissions or revealing sensitive data.