Connect with us

Hi, what are you looking for?

Venus recovers 35m stolen funds lazarus group
Venus recovers 35m stolen funds lazarus group

Cryptocurrency

Venus Protocol Saves $13.5M Crypto from Lazarus Connection, Emergency Recovery

The DeFi platform Venus Protocol has recovered $13.5 million in stolen crypto after a phishing attack connected to North Korea’s Lazarus Group. An emergency vote was taken swiftly to force liquidation of the attacker’s wallet. This marks a rare win against state-backed crypto hacks.

Venus Protocol Recovers $13.5 Million Stolen in Lazarus’ Phishing Attack

Venus Protocol, a leading DeFi lending platform, has successfully fought back against the Lazarus Group, one of the most feared state-backed hacker collectives in the crypto industry.

Venus helped a customer recover $13.5 million in stolen funds after the client fell victim to a phishing attack earlier this week, the firm announced via Twitter (X) on Thursday.

Hackers deployed a malicious Zoom client to trick the victim into granting delegated account access. Once inside, the attackers borrowed and redeemed assets, draining millions in stablecoins and wrapped tokens.


Emergency Vote Saves Millions

Venus Protocol’s community launched an on-chain governance vote in record time. The decision allowed them to force-liquidate the attacker’s wallet, sending the stolen tokens to a designated recovery address.

Hexagate and Hypernative, two blockchain security partners, flagged suspicious activity within minutes, prompting Venus to temporarily suspend the platform. Importantly, Venus confirmed that neither its smart contracts nor its front end were compromised.

The resolution took less than 12 hours, unusually fast for a DeFi hack.

The victim, Kuan Sun, narrowly avoided a catastrophic loss.

Supporting firms including PeckShield, Binance, and SlowMist also aided in the recovery effort.

Related : DeFi Trader Loses $13.5 Million in Crypto Phishing Attack on Venus Protocol


Lazarus Group Identified

Post-incident analysis by SlowMist confirmed the involvement of the Lazarus Group, a North Korea-sponsored hacking unit.

The group is notorious for high-profile attacks, including:

SlowMist warned that Lazarus is increasingly deploying fake apps and phishing campaigns, including malicious Zoom clients, to expand their attack surface.


Why This Case Matters

Successful recovery of hacked funds in DeFi is extremely rare. Venus Protocol’s transparent governance, rapid decision-making, and cross-industry collaboration may set a new security benchmark for the sector.

The Lazarus Group remains one of the most dangerous threats to global crypto infrastructure, but this time, the attackers lost.

author avatar
Samarth
Samarth is a crypto and finance analyst at 4C, bringing sharp market insights and global economic commentary to every article.
Advertisement

You May Also Like

Business

Ripple has acquired corporate treasury management firm GTreasury for $1 billion. The acquisition highlights Ripple’s growing interest in the digital finance sector. This deal...

Business

Peaq, the DePIN protocol, has signed a Memorandum of Understanding (MoU) with Dubai’s VARA, marking a significant step in advancing the machine economy and...

Business

A bold new stock exchange that just received approval from the French has been granted a DLT trading and settlement (TSS) license. Lise will...

Cryptocurrency

To maintain the stability of the UK’s financial system, Bank of England (BoE) Deputy Governor Sarah Breeden has outlined the central bank’s position on...

polkadot
Polkadot (DOT) $ 2.95 5.77%
bitcoin
Bitcoin (BTC) $ 107,962.00 3.24%
ethereum
Ethereum (ETH) $ 3,800.93 4.59%
cardano
Cardano (ADA) $ 0.628017 5.87%
xrp
XRP (XRP) $ 2.38 4.78%
stellar
Stellar (XLM) $ 0.310236 4.96%
litecoin
Litecoin (LTC) $ 93.86 2.05%