Venus protocol reclaims $13.5m user fund from Lazarus Group

BinBits 10 hours ago 99

Venus Protocol, a renowned decentralized finance (DeFi) has assisted one of its users in recovering about $13.5 million. The DeFi platform confirmed the recovery on Thursday via a post on its official page on X.

The firm, according to the post, said the user fell victim to a phishing attack allegedly from the infamous North Korea-backed hackers, Lazarus Group. According to Venus Protocol, the attack manifested on Tuesday.

It was amazing that we could to turn the tide and have the best possible outcome for all. Huge shout out to @peckshield @hexagate_ @HypernativeLabs @chaos_labs and the amazing Venus Community.

This would not have worked out if one piece wasn't in place.

Stay safe, everyone 💪 https://t.co/LwiMzhA58H

— Venus Protocol (@VenusProtocol) September 4, 2025

Also confirming the attack is the victim, Kuan Sun who thanked the Venus protocol team on his page on X for ensuring the recovery. While providing insight into the attack, the protocol said the bad actors used a malicious Zoom client to persuade Kuan Sun into giving them delegated control of the account. This permission empowered the hackers to borrow and claim the funds on behalf of Sun.

Hey gus, I am the victim of the recent phishing attack on Venus. What could have been a total disaster turned into a battle we actually won — thanks to an incredible group of teams. 🙏

Here’s my gratitude thread 🧵

— Kuan Sun (@KuanSun1990) September 4, 2025

Hence, the attackers went on to drain the funds in stablecoins and some wrapped digital assets. Thanks to the protocol’s security partners, HExagate and Hypernative who raised the alarm about the malicious movement of funds in less than a few minutes.

The alert from the security partners made Venus suspend all activities on its protocol. However, in less than 12 hours, the decentralized finance platform managed to reclaim the assets.

How Venus suspended all protocol activities

In reaction, the decentralized protocol initiated a precautionary measure by suspending all activities on its platform, before commencing an investigation into the issue. Also, Venus protocol audited its smart contracts and front-end to ensure that they remain intact.

Results from the audit established that the hackers didn’t penetrate further beyond the affected user’s account.

Thereafter, Venus protocol launched an emergency governance vote to force the hacker’s address into liquidation and eliminate access to the stolen funds. By that, the protocol went on to send the assets to a recovery wallet.

The DeFi platform went on to establish that key firms within the cryptocurrency industry like Binance, SlowMist, and PeckShield all assisted in the recovery of the funds. According to the victim, SlowMist did a deep analysis and is one of the foremost firms to link the attack to the notorious Lazarus Group.

Over the years, the Lazarus Group has been lurking in the crypto space, targeting protocols, exchanges and wealthy cryptocurrency holders. The North Korea hacker group is linked to high-profile crypto hacks such as the $530 million CoinCheck breach, $600 million Ronin bridge exploit, and the $1.5 billion Bybit hack.

Read More:

First Bitcoin ETF launches in Central Asia
BitMine seeks to raise $24.5bn to boost ETH ($4,326.12) stockpile
ICE, Chainlink partners to bring Forex, precious metals on-chain

The post Venus protocol reclaims $13.5m user fund from Lazarus Group appeared first on BinBits.

BitRss shares this Content always with

License.

Read Entire Article

Screenshot generated in real time with SneakPeek Suite

Search Crypto News

The latest Top News, only from Leading exponents of BlockChain, Bitcoin, Altcoins and different Accredited Crypto Currency Sources.

Since 2015, our Mission was to Share, up-to-date, those News and Information we believe to represent in an Ethical and sincere manner the current Crypto Currencies World: everything you are looking for, in one place!

We have always tried to give priority to the News and the Sources; for this reason we have designed this New Version of BitRss.com with a clean and simple Style, usable by all Devices, fast and effective. Our exclusive Algorithm, in addition to filtering (a lot..) sponsored content of dubious interest, Lists the News, in Chronological order of Publication on the Internet, allowing our Users to Follow the Flow of Articles in a fast and intuitive way.

You can also check the Cryptocurrency Price in Real Time directly in the shared Articles (the TAG's highlighted in green), which allows you to Learn more about the Market Trend of that particular Coin with many other related information. Each content includes always a Screenshot of the Article's Source.