Venus Protocol Suspends: $27 Million Phishing Scam Exposed

Venus Protocol Suspends Platform After $27 Million Phishing Scam, XVS Drops 6%

3 September 2025 on 13: 56

Reading time: 2 minutes

Venus Protocol temporarily suspended operations on its platform on September 2nd after a pervasive phishing attack that cost a user tens of millions of dollars. This shocking event followed a report from blockchain security firm Cyvers, which reported a suspicious transaction that cost nearly $27 million from a single account. wallet withdrew.

The theft report provided a disturbing overview of the stolen assets: $19,8 million in vUSDT, $7,15 million in vUSDC, $146.000 in vXRP, $22.000 in vETH, and 285 BTCB. Cyvers clarified that the stolen funds are currently locked in the attacker's contract and have not yet been exchanged.

In an official statement, the Venus team confirmed that it was investigating the situation and implementing necessary security protocols to protect the platform.

The Venus Whale phishing attack

However, the size of the dungeon Initially, concerns were raised about a fundamental vulnerability in the protocol. However, experts, including DeFi researcher Ignas, pointed out that Venus itself had not been compromised. He noted that the DeFi protocol was functioning optimally and stated that the attacker had exploited the pre-approved authorizations granted to the compromised wallet.

SlowMist founder Yu Xian expanded on this by indicating that the victim had been tricked into signing a malicious approval transaction. This gave the attacker unrestricted permission to transfer tokens directly from the wallet. He emphasized that while Venus’ smart contracts remained intact, the possibility of a compromised frontend cannot be ruled out.

Xian further suggested that the victim may have been the target of a poisoning attack, intended to compromise his computer. The hacker demonstrated planning and sophistication, leveraging complex funding sources, including transaction fees routed through Monero exchanges. He added: “The large holder and we are coordinating, many details will not be elaborated further now, and the actual loss is also not accurate. It may even be less than $20 million.”

The recent developments surrounding Venus Protocol once again highlight the vulnerability of the crypto world, where even experienced investors can be exposed to sophisticated attacks. This incident serves as a compelling reminder of the need for robust security measures and constant vigilance in a constantly evolving landscape.

Frequently Asked Questions

Why is the Venus platform shutdown important?
Temporarily shutting down the platform allows for a thorough investigation into the attack and helps prevent further damage by stopping unsafe activity.

How did the attacker gain access to the victim's wallet?
The attacker leveraged a malicious approval transaction signed by the victim, giving the attacker unrestricted access to the tokens in the wallet.

What can investors learn from this attack?
Investors should take the importance of security and recognizing phishing attacks seriously. This incident highlights that even the most sophisticated protocols are not immune to direct attacks, leading to potential significant losses.

Share this article:

Disclaimer: The information on Block 9 is for general informational and educational purposes only. While we strive to provide up-to-date, correct and relevant content, we make no warranties as to the completeness, accuracy or reliability of the information provided. All content on this website, including articles, analyses, opinions and other publications, is for general information purposes only and does not constitute professional or legal advice in any way, including but not limited to financial, investment or tax advice.

Block 9 makes no guarantees or representations as to any possible results or returns that may arise from the use of information on this website. Nothing on this website should be interpreted as a recommendation to buy, sell or hold any particular asset, including but not limited to cryptocurrencies, tokens or other financial instruments.

The opinions and views expressed in contributions by editors, external authors or community members are strictly personal and do not necessarily represent the views or policies of Block 9 as a platform. Block 9 accepts no liability for any loss or damage – direct or indirect – resulting from the use of (or reliance on) the information published on this website.

Investing in cryptocurrencies and other digital assets involves significant risks. The value of such assets can fluctuate significantly, and there is a chance that you could lose (some of) your investment. We strongly recommend that you always do your own research (DYOR) and seek independent advice from a qualified financial advisor before making any financial decisions. By using this website, you agree to this disclaimer and accept that Block 9 is not responsible for your investment choices or the results thereof.