Close Menu
    Trending
    Sunday, September 28
    Subscribe
    Sunday, September 28

    Venus Protocol incident Phishing loss pause and a defense playbook for DeFi teams

    Noa VesperBy News No Comments2 Mins Read

    A security read for operators and treasuries that focuses on what happened, why it matters, and how to reduce blast radius next time.

    What happened

    A large user of Venus Protocol suffered a wallet drain in a suspected phishing event. Estimated losses were reported in the tens of millions. Venus paused parts of the platform as checks began and stated that core contracts were not the source of the loss.

    Why this matters

    User side vulnerabilities travel a single compromised wallet can move risk into lending pools and collateral markets.
    Operational discipline clear pause rules and circuit breakers can localize damage.
    Comms and transparency fast and clear public updates reduce rumor and stabilize liquidity.

    Threat model snapshot

    • Phishing and social engineering that capture keys or session tokens.

    • Malicious approvals that give attackers transfer rights.

    • Bridge pathways that widen the blast radius after a compromise.

    • Oracle and price feed anomalies during stress.

    Defense playbook

    • Signer separation keep cold and hot roles separate with clear limits.

    • Withdrawal delay add a short delay for large withdrawals with a cancel path.

    • Treasury address caps set hard caps per address and rotate addresses.

    • Education and drills run regular phishing simulations with signed runbooks.

    Figure 1. Venus incident timeline

    Control strength check

    ControlBeforeAfter
    Treasury address limitsMediumStrong
    Withdrawal delayLowStrong
    Signer separationMediumStrong
    Phishing educationLowStrong
    Alerting rulesLowStrong

     

    Figure 2. Venus controls before after

    What to watch next

    • Third party reports that confirm root cause and loss amounts.

    • The exact scope of the pause and the unpause criteria.

    • Any governance proposals that change limits and signer policies.

    Related Posts

    External Sources

    Avatar photo

    Researchs & Market Structure Editor at The Crypto Tides. I follow paper trails, court dockets, and order-book fingerprints to show how rules, custody, and exchange plumbing shape risk. I rely on interviews, primary documents, and verified datasets rather than hot takes. Outside the newsroom, I unwind with watercolor sketching and weekend pottery, and I never say no to a matcha and a good notebook hunt ❤

    Keep Reading

    Add A Comment
    Leave A Reply

    Crypto News

    Company
    © 2025 The Crypto Tides

    The Crypto Tides is committed to delivering transparent, independent journalism focused on the evolving world of cryptocurrencies, blockchain, Web3, and emerging digital technologies. Some links on our site may be affiliate partnerships meaning we may earn a commission if you choose to use them but this never influences our editorial integrity or reporting standards. We believe in open access to high quality, and free content that helps our readers stay informed and empowered. Thank you for being part of a community that values honest and responsible reporting.