Venus Protocol Detects $3.7M Supply Cap Attack on THE Pool

TheNewsCryptoPublicado a 2026-03-16Actualizado a 2026-03-16

Resumen

Venus Protocol detected a suspicious trading activity in its THE token liquidity pool on March 15. The incident, identified as a supply cap attack, occurred in two phases. First, the attacker accumulated approximately 84% of the total Thena token market capitalization. Then, they used these holdings as collateral to borrow other assets, including 6.67 million CAKE tokens, 1.58 million USDC, 2,801 BNB, and 20 Bitcoin, resulting in over $3.7 million in losses. Only the CAKE and THE pools were directly affected. In response, Venus halted all THE borrows and withdrawals, as well as those for other low-liquidity tokens. This attack represents a notable protocol-level exploit in DeFi for 2024.

On March 15, Venus Protocol revealed that it has found some suspicious trading activity in its liquidity pool for the Thena (THE) token. For clarification, Venus operates as a lending and borrowing platform, and THE is the native token of the Thena DeFi platform.

Venus has appointed Allez Labs as its risk manager, which stated that the incident seems to be a supply cap attack and it unravelled in two phases. The first phase shows that the attacker gradually collected around 84% of the overall Thena token market capitalisation.

The second phase included the attacker using those holdings as collateral to borrow other assets from the platform. The borrowed assets comprised 6.67 million CAKE tokens, 1.58 million USDC, 2,801 BNB, and 20 Bitcoin, as reported by Allez Labs.

The overall value lost in the attack surpassed $3.7 million, revealed by Wu Blockchain. Only the CAKE and THE pools were directly impacted by the exploit.

The Notable Attack

Venus Protocol replied by halting all THE borrows and withdrawals quickly. The team mentioned in a statement that this will stay in effect until the investigation is taken to end. As an extra precaution, Allez Labs mentioned Venus also shut withdrawals and borrowing for various other low-liquidity tokens on the platform.

The attack is one of the more noteworthy decentralised finance security incidents of this year. The overall losses via crypto hacks slipped to $49 million in February, the lowest monthly figure in around a year, as per the blockchain security company PeckShield.

That slip in hack-associated losses was, although, accompanied by a surge in phishing and social-engineering attacks aiming at individual users.

Nominis, a blockchain intelligence platform, mentioned that a lot of individual attacks in February comprised phishing websites, malicious signature requests, and address poisoning scams made to steal private keys.

The Venus incident shows a different threat category, one aiming protocol-level mechanics instead of individual user credentials.

Highlighted Crypto News Today:

Playnance Partners With KGeN to Expand Web3 Gaming Distribution Network

Preguntas relacionadas

QWhat type of attack did Venus Protocol detect on its THE pool?

AVenus Protocol detected a supply cap attack on its THE pool.

QWhat was the total value of assets lost in the attack on Venus Protocol?

AThe total value lost in the attack surpassed $3.7 million.

QWhich two token pools were directly impacted by the exploit?

AOnly the CAKE and THE pools were directly impacted by the exploit.

QWhat immediate action did Venus Protocol take in response to the attack?

AVenus Protocol halted all THE borrows and withdrawals, and also shut withdrawals and borrowing for various other low-liquidity tokens on the platform.

QWhat was the first phase of the attack as described by risk manager Allez Labs?

AIn the first phase, the attacker gradually collected around 84% of the overall Thena token market capitalisation.

Lecturas Relacionadas

Expanding Glassnode: Macro and Traditional Finance Data

Glassnode is expanding its product offering to include macroeconomic and traditional finance (TradFi) data, recognizing that digital assets like Bitcoin are now a mainstream asset class increasingly influenced by global financial forces. As institutional participation grows—evidenced by Bitcoin ETFs surpassing $100 billion in AUM by early 2026—Bitcoin's price is more affected by monetary policy, geopolitical risks, and macroeconomic trends. Key metrics now integrated include central bank balance sheets, money supply (M2), interest rates, and government bond yields, which help contextualize Bitcoin within global liquidity cycles. The platform also tracks equity indices, fear gauges, forex rates, and commodities to assess risk appetite and market stress. This shift reflects a structural change: Bitcoin's correlation with traditional risk assets like the S&P 500 has strengthened, driven by institutional capital, post-COVID liquidity cycles, and ETF adoption. Glassnode aims to provide a unified platform for analyzing both on-chain and TradFi data, enabling users to better interpret market moves and regime shifts in a maturing digital asset ecosystem.

insights.glassnodeHace 1 hora(s)

Expanding Glassnode: Macro and Traditional Finance Data

insights.glassnodeHace 1 hora(s)

Analysts Outline a Price Path for Ozak AI That Shows Gradual Expansion Toward the $6 Range

Ozak AI ($OZ), an AI cryptocurrency token combining AI technologies with decentralized physical infrastructure networks (DePIN), is gaining attention for its utility-driven growth approach. Currently in an advanced presale stage with over $6 million raised, the token is priced at $0.014. Analysts highlight its focus on automation, analytics, and scalability rather than hype, supported by strategic partnerships with entities like SINT, Hive Intel, and Pyth Network. These collaborations enhance functionality, data streaming, and liquidity. A gradual price expansion toward the $6 range is projected, driven by adoption, staking, and ecosystem development rather than short-term speculation.

TheNewsCryptoHace 2 hora(s)

Analysts Outline a Price Path for Ozak AI That Shows Gradual Expansion Toward the $6 Range

TheNewsCryptoHace 2 hora(s)

Utexo Partners with x402 to Provide Near-Instant USDT Settlement for the Agent Economy

Utexo, a Bitcoin-native stablecoin payment execution and settlement layer, has partnered with x402 to integrate USDT compatibility into the x402 payment protocol. This collaboration enables near-instant settlement for agent-to-agent transactions, with speeds as fast as 50 milliseconds. x402 is an open protocol that uses the HTTP 402 "Payment Required" status code to embed payment functionality directly into HTTP requests. This allows applications, APIs, and autonomous systems to pay for services in real-time without requiring pre-funded accounts. The integration expands x402’s initial USDC support to include USDT, one of the most widely used stablecoins globally. Utexo’s infrastructure is designed for high-frequency, low-latency transactions, making it well-suited for machine-driven payments. According to Utexo CEO Viktor Ihnatiuk, supporting USDT within the x402 framework significantly broadens access and provides developers the performance needed for real-time agent-based systems. Kevin Leffew of x402 at Coinbase added that expanding stablecoin access improves performance and accelerates developer adoption. This partnership supports growing use cases where software systems autonomously conduct transactions—such as paying for API calls, accessing data on-demand, and coordinating services across platforms without human intervention. By combining x402’s protocol with Utexo’s settlement infrastructure, the collaboration enables a payment model where transactions are as fast and efficient as the requests that trigger them.

marsbitHace 2 hora(s)

Utexo Partners with x402 to Provide Near-Instant USDT Settlement for the Agent Economy

marsbitHace 2 hora(s)

Behind the MiniMax 'Pseudo-Open Source' Controversy: Has Yan Junjie's Ideal Succumbed to Capital Anxiety?

The article discusses the controversy surrounding MiniMax's "pseudo-open-source" release of its flagship M2.7 model. Initially presented as open-source, the model was later released under a "Modified-MIT" license that restricts commercial use without written permission, sparking backlash from the developer community. This move is seen as a departure from true open-source principles and reflects the tension between technological idealism and commercial pressures. MiniMax, which recently went public, faces significant financial challenges, with substantial losses despite growing revenues. The company’s decision to limit commercial use is interpreted as an effort to protect its revenue streams and control how its models are deployed, especially after instances of third-party misuse affected its reputation. The incident highlights a broader industry trend where "open-weight" models are increasingly distinguished from fully open-source ones, raising concerns about trust and legal certainty for developers and enterprises. The author concludes that MiniMax’s shift represents a pragmatic, if controversial, business strategy aimed at ensuring profitability, even at the cost of community trust.

marsbitHace 3 hora(s)

Behind the MiniMax 'Pseudo-Open Source' Controversy: Has Yan Junjie's Ideal Succumbed to Capital Anxiety?

marsbitHace 3 hora(s)

Apple Sends Siri Staff to AI 'Cram School', Jensen Huang's Bold Prediction Begins to Materialize

Apple is reportedly sending nearly 200 engineers from its Siri team to a multi-week AI programming "boot camp" to retrain them in AI-assisted coding, just two months before its major WWDC event. This unusual move reflects Apple's urgent effort to modernize Siri’s development process amid industry-wide shifts toward AI-powered tools like Claude Code and OpenAI’s Codex. The restructured Siri team now consists of only about 60 core developers, with another 60 assigned to test Siri’s performance and safety. The reshuffle follows internal delays in launching a new AI-powered Siri, originally planned for early 2025. Under new leadership—software chief Craig Federighi and hardware veteran Mike Rockwell—Apple is pushing to integrate Google’s Gemini model to power a more conversational, multi-step capable Siri. The situation underscores a broader trend: engineers who don’t adapt to AI tools risk being sidelined, as companies like Meta and NVIDIA emphasize AI-augmented productivity. While Apple’s retraining approach is relatively supportive compared to outright layoffs, it highlights how rapidly AI is reshaping tech roles—making traditional skills less relevant and accelerating a new industrial standard for software development.

marsbitHace 3 hora(s)

Apple Sends Siri Staff to AI 'Cram School', Jensen Huang's Bold Prediction Begins to Materialize

marsbitHace 3 hora(s)

Trading

Spot

Futuros