Root-cause analysis not yet published. The incident description below contains all currently available signal — review the attack transaction directly for definitive forensics.
According to on-chain data, a user deposited 0.5 BNB into Venus and borrowed a series of assets, including stkBNB, ankrBNB, etc. The user then exchanged them for 116.45 ETH assets and transferred them to another account. In response to the attack on Venus, official personnel from the Venus Protocol addressed the issue on Telegram, stating, "The core pool and XVS are not affected. The attack occurred due to a price malfunction in Binance's oracle, involving the BNB price in a small independent pool. The snBNB team is currently addressing this issue. The cause has been identified, and it has been reported to the Binance oracle team." Attack method (per SlowMist): Oracle Attack. Reported loss: $ 270,000.
- chain
- —
- protocol
- Venus Protocol
- bug_class
- oracle
- date_occurred
- 2023-12-11
- loss_usd
- $270,000
- source_id
- sm:venus-protocol::2023-12-11