Connect with us

Hi, what are you looking for?

Venus recovers 35m stolen funds lazarus group
Venus recovers 35m stolen funds lazarus group

Cryptocurrency

Venus Protocol Saves $13.5M Crypto from Lazarus Connection, Emergency Recovery

The DeFi platform Venus Protocol has recovered $13.5 million in stolen crypto after a phishing attack connected to North Korea’s Lazarus Group. An emergency vote was taken swiftly to force liquidation of the attacker’s wallet. This marks a rare win against state-backed crypto hacks.

Published

Venus Protocol Recovers $13.5 Million Stolen in Lazarus’ Phishing Attack

Venus Protocol, a leading DeFi lending platform, has successfully fought back against the Lazarus Group, one of the most feared state-backed hacker collectives in the crypto industry.

Venus helped a customer recover $13.5 million in stolen funds after the client fell victim to a phishing attack earlier this week, the firm announced via Twitter (X) on Thursday.

Hackers deployed a malicious Zoom client to trick the victim into granting delegated account access. Once inside, the attackers borrowed and redeemed assets, draining millions in stablecoins and wrapped tokens.

Emergency Vote Saves Millions

Venus Protocol’s community launched an on-chain governance vote in record time. The decision allowed them to force-liquidate the attacker’s wallet, sending the stolen tokens to a designated recovery address.

Hexagate and Hypernative, two blockchain security partners, flagged suspicious activity within minutes, prompting Venus to temporarily suspend the platform. Importantly, Venus confirmed that neither its smart contracts nor its front end were compromised.

The resolution took less than 12 hours, unusually fast for a DeFi hack.

The victim, Kuan Sun, narrowly avoided a catastrophic loss.

Supporting firms including PeckShield, Binance, and SlowMist also aided in the recovery effort.

Related : DeFi Trader Loses $13.5 Million in Crypto Phishing Attack on Venus Protocol

Lazarus Group Identified

Post-incident analysis by SlowMist confirmed the involvement of the Lazarus Group, a North Korea-sponsored hacking unit.

The group is notorious for high-profile attacks, including:

SlowMist warned that Lazarus is increasingly deploying fake apps and phishing campaigns, including malicious Zoom clients, to expand their attack surface.

Why This Case Matters

Successful recovery of hacked funds in DeFi is extremely rare. Venus Protocol’s transparent governance, rapid decision-making, and cross-industry collaboration may set a new security benchmark for the sector.

The Lazarus Group remains one of the most dangerous threats to global crypto infrastructure, but this time, the attackers lost.

author avatar
Samarth
Samarth is a crypto and finance analyst at 4C, bringing sharp market insights and global economic commentary to every article.
See Full Bio
In this article:, , , ,
Advertisement

You May Also Like

California gov Newsom trump maga crypto corruption memecoin California gov Newsom trump maga crypto corruption memecoin

Cryptocurrency

Newsom Taunts Trump with ‘Trump Corruption Coin’ as Crypto Becomes Political Weapon

California Governor Gavin Newsom is mocking Donald Trump with plans to create a ‘Trump Corruption Coin’. It is a satirical memecoin designed to highlight...

5 days ago
Uae rak properties bitcoin crypto usdt tether ethereum eth Uae rak properties bitcoin crypto usdt tether ethereum eth

Cryptocurrency

UAE’s RAK Properties Starts Accepting Bitcoin, Ethereum, and USDT

RAK Properties, one of the leading real estate developers in Ras Al Khaimah, is now accepting Bitcoin (BTC), Ethereum (ETH), and Tether (USDT) for...

3 days ago
Metaplanet bitcoin stock fall Metaplanet bitcoin stock fall

Business

Metaplanet’s Bitcoin Dream Shaken as Stock Crashes 54%, Fundraising Model in Jeopardy

Japan’s “brave” Bitcoin buyer Metaplanet is in deep water. Since June, its stock fell by 54% which makes the firm’s plan to construct one...

5 days ago
Chainlink link bullish outlook institutional demand Chainlink link bullish outlook institutional demand

Alpha Zone

Chainlink (LINK) Poised for Lift-Off: Institutional Demand and DeFi Growth Fuel Bullish Outlook

Chainlink (LINK) is gaining momentum as institutions embrace its DeFi and RWA integrations—analysts hint at a powerful rally ahead.

4 days ago
polkadot
Polkadot (DOT) $ 3.79 0.37%
bitcoin
Bitcoin (BTC) $ 111,582.00 0.80%
ethereum
Ethereum (ETH) $ 4,338.87 0.95%
cardano
Cardano (ADA) $ 0.817586 0.12%
xrp
XRP (XRP) $ 2.81 0.71%
stellar
Stellar (XLM) $ 0.358858 0.16%
litecoin
Litecoin (LTC) $ 111.96 0.66%