BNB Chain-Based Venus Protocol Drained of $27M on Suspected Contract Compromise

Logo

Tech

Share this article

The attack involved updating a contract to a malicious address, affecting tokens like vUSDC and vETH.

By Shaurya Malwa|Edited by Sheldon Reback

Updated Sep 2, 2025, 9:55 a.m. Published Sep 2, 2025, 9:47 a.m.

Hacker sitting in a room
  • Venus Protocol was exploited, losing an estimated $27 million in assets.
  • The attack involved updating a contract to a malicious address, affecting tokens like vUSDC and vETH.
  • Security teams are monitoring the situation, and the Venus community has not yet released an official statement.

Venus Protocol, one of the largest lending platforms on the BNB Chain, was hit by a suspected exploit on Tuesday with attackers seemingly draining an estimated $27 million worth of assets.

On-chain sleuths said they suspect the protocol’s Core Pool Comptroller contract was updated to a malicious address, which then siphoned off tokens including vUSDC and vETH.

STORY CONTINUES BELOW

Don’t miss another story.Subscribe to the The Protocol Newsletter today.See all newslettersBy signing up, you will receive emails about CoinDesk products and you agree to ourterms of useandprivacy policy.

Security teams are tracking the stolen assets and the Venus community has yet to issue an official statement.

The funds remain in the attacker’s contract and have not yet been swapped, leaving open questions about whether the exploit will evolve into a full-scale cash-out.

Venus functions as a money market on the BNB Chain, allowing users to deposit assets such as stablecoins and major tokens to earn interest, while borrowers post collateral to take out loans.

Its native token, XVS, plays a role in governance and protocol incentives. At its peak, Venus held over $7 billion in assets, making it a core part of BNB Chain’s DeFi ecosystem.

(This is a developing story.)

More For You

By Sam Reynolds|Edited by Aoyon Ashraf

6 hours ago

Bruce Liu of OP_CAT Labs speaks at BTC Asia in Hong Kong (BTC Asia)

OP_CAT Labs’ Liu says Satoshi envisioned Bitcoin to be programmable. To get there, one piece of code needs to be re-enabled. But there are some loud voices in the way.

What to know:

  • Bruce Liu advocates for re-enabling the OP_CAT opcode in Bitcoin to transform it into programmable money, rivaling Ethereum and Solana.
  • OP_CAT, a disabled opcode, could unlock new possibilities for Bitcoin, including decentralized exchanges and zero-knowledge proofs.
  • Despite its potential, OP_CAT faces opposition due to concerns over security and Bitcoin’s stability.

 

Leave a Reply

Your email address will not be published. Required fields are marked *