Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

Venus Protocol user hit by cyberattack

Incident
First reported
Last updated
Happening score
H score 4
1 unique sources, 1 articles

Summary

Hide ▲

The Venus Protocol user suffered a social engineering attack on September 2, 2025, after attackers used a compromised Zoom client to gain access. The malicious transaction gave them delegate status over the account and let them drain funds. Rapid detection and response enabled recovery of about $13 million, limiting the loss and further abuse.

Related Happenings

Austrian-Albanian cryptocurrency fraud ring takedown

Law Enforcement
First: 29.04.2026 17:27 Last: 29.04.2026 17:27 Sources 1

About this happening: Austrian and Albanian authorities **dismantled** a **cryptocurrency investment fraud ring**, escalating a cross-border cyberfraud case that allegedly caused **over €50 million** i...

Open Happening

Operation Atlantic approval-phishing takedown

Law Enforcement
First: 13.04.2026 11:00 Last: 13.04.2026 11:00 Sources 1

About this happening: A **UK-led** cross-border operation carried out a **takedown** of **approval phishing** crypto fraud networks, freezing **$12m** and identifying **more than 20,000 victims**. The...

Open Happening

Tycoon2FA phishing campaign resumes after takedown

Campaign
First: 23.03.2026 18:05 Last: 23.03.2026 18:05 Sources 1

About this happening: **Tycoon2FA** has resumed a **broad phishing campaign** after a **major takedown**, and it is again **compromising email accounts** while **bypassing MFA**. The operation uses **a...

Open Happening

DOJ and Europol takedown of SocksEscort proxy network

Law Enforcement
First: 12.03.2026 18:19 Last: 12.03.2026 18:19 Sources 1

About this happening: U.S. and European law enforcement **took down** **SocksEscort**, a long-running cybercrime proxy network that routed traffic through compromised edge devices. The action **seized...

Open Happening

Balancer Protocol hit by cyberattack

Incident
First: 03.11.2025 23:53 Last: 03.11.2025 23:53 Sources 1

About this happening: **Balancer Protocol** confirmed a **protocol exploit** in its **V2 Compostable Stable Pools**, with losses reportedly exceeding **$128 million**. The incident was confirmed at **7...

Open Happening

Timeline

  1. 23.09.2025 20:13 1 articles · 8mo ago

    Venus Protocol user compromise via social engineering

    Exploitation Observed

    A Venus Protocol user was targeted on September 2, 2025 in a social engineering attack in which malicious actors used a compromised Zoom client to gain system access and manipulated the user into submitting a blockchain transaction that granted delegate status over the account, giving the attackers direct control to borrow and redeem assets on behalf of the victim.

    Show sources
    Open in new tab
  2. 23.09.2025 20:13 1 articles · 8mo ago

    Venus Protocol recovery after malicious transaction

    Victim Impact Update

    After the malicious transaction, Venus Protocol paused within 20 minutes, blocking further movement of funds; over the next 12 hours the protocol force-liquidated the attacker's wallet, recovered stolen funds worth approximately $13 million, resumed full service, and passed a governance proposal to freeze $3 million in assets still controlled by the attacker.

    Show sources
    Open in new tab
  3. 23.09.2025 20:13 2 articles · 8mo ago

    Chainalysis disclosure of Venus Protocol attack mechanics

    Technical Analysis Update

    Chainalysis disclosed on September 23, 2025 that the Venus Protocol compromise was rooted in social engineering through a compromised Zoom client, and that early detection and swift action limited the loss while enabling recovery of approximately $13 million; the disclosure also noted the governance proposal to freeze $3 million in attacker-controlled assets.

    Show sources
    Open in new tab