Venus Protocol Detects $3.7M Supply Cap Attack on THE Pool

TheNewsCryptoОпубліковано о 2026-03-16Востаннє оновлено о 2026-03-16

Анотація

Venus Protocol detected a suspicious trading activity in its THE token liquidity pool on March 15. The incident, identified as a supply cap attack, occurred in two phases. First, the attacker accumulated approximately 84% of the total Thena token market capitalization. Then, they used these holdings as collateral to borrow other assets, including 6.67 million CAKE tokens, 1.58 million USDC, 2,801 BNB, and 20 Bitcoin, resulting in over $3.7 million in losses. Only the CAKE and THE pools were directly affected. In response, Venus halted all THE borrows and withdrawals, as well as those for other low-liquidity tokens. This attack represents a notable protocol-level exploit in DeFi for 2024.

On March 15, Venus Protocol revealed that it has found some suspicious trading activity in its liquidity pool for the Thena (THE) token. For clarification, Venus operates as a lending and borrowing platform, and THE is the native token of the Thena DeFi platform.

Venus has appointed Allez Labs as its risk manager, which stated that the incident seems to be a supply cap attack and it unravelled in two phases. The first phase shows that the attacker gradually collected around 84% of the overall Thena token market capitalisation.

The second phase included the attacker using those holdings as collateral to borrow other assets from the platform. The borrowed assets comprised 6.67 million CAKE tokens, 1.58 million USDC, 2,801 BNB, and 20 Bitcoin, as reported by Allez Labs.

The overall value lost in the attack surpassed $3.7 million, revealed by Wu Blockchain. Only the CAKE and THE pools were directly impacted by the exploit.

The Notable Attack

Venus Protocol replied by halting all THE borrows and withdrawals quickly. The team mentioned in a statement that this will stay in effect until the investigation is taken to end. As an extra precaution, Allez Labs mentioned Venus also shut withdrawals and borrowing for various other low-liquidity tokens on the platform.

The attack is one of the more noteworthy decentralised finance security incidents of this year. The overall losses via crypto hacks slipped to $49 million in February, the lowest monthly figure in around a year, as per the blockchain security company PeckShield.

That slip in hack-associated losses was, although, accompanied by a surge in phishing and social-engineering attacks aiming at individual users.

Nominis, a blockchain intelligence platform, mentioned that a lot of individual attacks in February comprised phishing websites, malicious signature requests, and address poisoning scams made to steal private keys.

The Venus incident shows a different threat category, one aiming protocol-level mechanics instead of individual user credentials.

Highlighted Crypto News Today:

Playnance Partners With KGeN to Expand Web3 Gaming Distribution Network

Пов'язані питання

QWhat type of attack did Venus Protocol detect on its THE pool?

AVenus Protocol detected a supply cap attack on its THE pool.

QWhat was the total value of assets lost in the attack on Venus Protocol?

AThe total value lost in the attack surpassed $3.7 million.

QWhich two token pools were directly impacted by the exploit?

AOnly the CAKE and THE pools were directly impacted by the exploit.

QWhat immediate action did Venus Protocol take in response to the attack?

AVenus Protocol halted all THE borrows and withdrawals, and also shut withdrawals and borrowing for various other low-liquidity tokens on the platform.

QWhat was the first phase of the attack as described by risk manager Allez Labs?

AIn the first phase, the attacker gradually collected around 84% of the overall Thena token market capitalisation.

Пов'язані матеріали

Claude Code Introduces Dynamic Workflows: Enabling AI to Form Teams and Collaborate

Claude Code introduces dynamic workflows, enabling AI to coordinate teams of specialized agents for complex tasks. This transforms Claude from a code assistant into a programmable workbench. Workflows address key limitations of single-agent systems: agentic laziness (premature task completion), self-preferential bias (favoring own outputs), and goal drift (losing sight of original objectives). The system allows Claude to dynamically create execution frameworks using JavaScript. It can split tasks, dispatch parallel agents for isolated work (e.g., in separate worktrees), implement adversarial validation, run tournaments, and synthesize results. This multi-agent approach is valuable for tasks requiring deep research, factual verification, code migration, root cause analysis, large-scale triage, and qualitative sorting. Key patterns include: classify-and-route, fan-out-and-synthesize, adversarial verification, generate-and-filter, tournaments, and loop-until-done. While token usage is higher, workflows excel where tasks resemble programming—needing problem decomposition, isolated context, hypothesis testing, and handling many details. They extend Claude Code's utility beyond technical work to areas like business plan review, resume screening, and naming brainstorm. The feature is not a universal solution but points to a future where AI tool competitiveness depends on organizing reliable, reusable, and auditable execution flows for complex goals.

marsbit23 хв тому

Claude Code Introduces Dynamic Workflows: Enabling AI to Form Teams and Collaborate

marsbit23 хв тому

Hyperliquid, Wall Street's 24/7 Trading Convenience Store

Hyperliquid: The 24/7 Trading "Convenience Store" for Wall Street Hyperliquid, a decentralized cryptocurrency exchange, has become a go-to platform for Wall Street traders seeking to trade around the clock, especially during traditional market closures. Founded by Jeff Yan, a former quantitative trader, after the FTX collapse, the platform emphasizes user self-custody of assets. It offers a wide range of perpetual contracts—leveraged derivatives with no expiry—on assets from Bitcoin and crude oil to the S&P 500 and even pre-IPO companies like SpaceX. A notable example involves a hedge fund trader who capitalized on geopolitical news over a weekend, securing a 243% return on oil derivatives before markets reopened. The platform, run by just 11 employees, generated approximately $800 million in revenue last year, and its native token HYPE has seen significant growth. Its rise highlights the merging of traditional finance and crypto. While U.S. users are currently restricted, recent CFTC rule changes could open access. The platform is known for its transparency, having processed $10 billion in liquidations during a market crash while competitors faltered. Regulators warn of the high risks and complexity of perpetual contracts for retail investors. Key to its appeal is a strong community culture, direct engagement with founders, and a simple interface. Despite rules against VPN use, it attracts global users with its permissionless approach. Hyperliquid plans to expand into prediction markets and options, aiming to eventually host all financial activity.

marsbit24 хв тому

Hyperliquid, Wall Street's 24/7 Trading Convenience Store

marsbit24 хв тому

Strategy Sells 32 Bitcoins: A True Turn of Direction?

Strategy, a public company known for its massive Bitcoin holdings, recently disclosed selling 32 BTC for approximately $2.5 million to cover obligations for its Series C Preferred Stock (STRC). This marked the first time the company reported a net decrease in Bitcoin in a standalone 8-K filing, initially causing market concern and a brief dip in BTC price below $72,000. However, analysts argue this sale is a strategic capital structure maneuver, not a loss of faith in Bitcoin. The sold amount represents a negligible 0.004% of Strategy's total holdings of 843,706 BTC. The primary intent is seen as a signal to credit rating agencies and analysts: Strategy is willing and able to monetize a tiny portion of its Bitcoin reserve to uphold its commitments to priority financing instruments like the STRC. This action follows S&P Global's earlier warnings about potential "debt wall" risks from Strategy's convertible notes. By proactively managing liabilities and demonstrating commitment to its preferred stock, Strategy aims to strengthen the credit quality of its financing tools. This, in turn, is designed to facilitate future fundraising, ultimately allowing the company to accumulate more Bitcoin. As founder Michael Saylor suggested, the strategy is to potentially "sell one Bitcoin to buy back 10 or 20 more."

marsbit42 хв тому

Strategy Sells 32 Bitcoins: A True Turn of Direction?

marsbit42 хв тому

"Internet Queen's" Fund Leads Investment, AI Music Unicorn Valued at $5.4 Billion

AI music generation leader Suno announced a $400 million Series D funding round on Wednesday, valuing the company at $5.4 billion. The round was led by Mary Meeker's Bond Capital, with participation from other major investors like IVP and Lightspeed Venture Partners. This marks a doubling of Suno's valuation from $2.45 billion just seven months prior. Suno's platform allows users to create complete songs from text prompts and has amassed over 2 million subscribers, progressing toward an annual recurring revenue target of $300 million. The company's journey reflects a shift in the music industry's stance on AI tools, evolving from legal battles with major record labels to securing a licensing deal and collaboration with Warner Music. CEO Mikey Shulman stated the new capital will accelerate hiring, product development, and ambitious new projects. Suno plans to expand its current workforce of 200 by up to 70% by year-end. The funding underscores strong investor confidence in the AI music sector, solidifying Suno's position as the highest-valued company in the field.

marsbit43 хв тому

"Internet Queen's" Fund Leads Investment, AI Music Unicorn Valued at $5.4 Billion

marsbit43 хв тому

Who Funds the Agents?

**Summary: Who Funds AI Agents?** OpenAI recently shut down a feature allowing AI agents to shop for users, highlighting the challenge of creating a secure and regulated environment for agent-driven transactions. While payment infrastructure exists, a crucial governance layer—defining spending limits, fraud detection, tax handling, and return policies—is largely missing. The potential is enormous: AI agents already processed $73M across 176M transactions last year, with McKinsey forecasting this could grow to $3-5T in global consumer commerce by 2030. The core competition isn't just about processing payments, which can be very cheap (especially with crypto-based settlement), but about controlling the rules that govern agent spending. Key players like Stripe and Coinbase are racing to dominate this governance layer. Stripe's acquisition of wallet provider Privy allows it to set spending policies, identity checks, and human-in-the-loop approvals directly at the wallet level. Similarly, Coinbase's stack, including its x402 protocol and AgentKit, embeds governance rules. This vertical integration across settlement, wallet, and governance layers is becoming the dominant strategy. Control over the governance layer is where significant future value lies. If agents handle trillions in transactions, even a small fee for managing compliance, fraud prevention, and policy enforcement could generate billions in annual revenue. The companies that successfully integrate across the payment stack will capture value from idle agent balances, transaction fees, and governance services, positioning themselves as the foundational banks of the AI agent economy.

marsbit51 хв тому

marsbit51 хв тому

Торгівля

Спот

Ф'ючерси