In a surprising phishing assault, North Korean-connected cybercriminals hit a BNB crypto whale to steal $13.5M in Binance cash, and now the XVS value could possibly be in query – right here’s why.
A serious Venus Protocol consumer misplaced about $13.5M on Sept. 1 after a phishing assault focused their positions. On-chain information and safety experiences confirmed the assault. It occurred at 3:26 PM UTC.
Venus Protocol paused operations instantly after the incident. The platform stated its good contracts have been nonetheless safe, and investigations are ongoing.
We’re conscious of the consumer pockets being drained (good contract is protected) and are actively investigating.
Venus is presently paused following safety protocols. We are going to hold you all up to date as quickly as we all know extra.
— Venus Protocol (@VenusProtocol) September 2, 2025
Was the BNB {Hardware} Pockets Actually Protected from Phishing?
Safety agency Beosin first reported losses of over $27M. Later, PeckShield revised the quantity to $13.5M. The preliminary determine included the consumer’s debt place. PeckShield stated, “Preliminary estimates have been increased as we didn’t exclude the debt place.”
Yu Xian, founding father of SlowMist, said the consumer’s {hardware} pockets itself was safe. However attackers compromised the browser extension linked to it.
This gave them borrowing and redemption entry to the consumer’s Venus Protocol holdings with out the proprietor understanding. The case exhibits that {hardware} wallets can nonetheless be uncovered if linked software program is susceptible. Even safe storage can fail in opposition to cautious social engineering.
Evaluation exhibits the assault was deliberate and well-funded. Gasoline charges got here from Monero (XMR) exchanges and different funds traced again to eXch, a darkish internet change linked to North Korean hackers.
Xian stated the whale was particularly focused and it wasn’t a broad assault. The Venus Protocol frontend was seemingly protected whereas the occasion raises issues about state-backed actors utilizing phishing to go after high-value DeFi customers.
Venus Protocol paused the platform to guard the remaining belongings. The group confirmed direct contact with the affected consumer, and so they stated resuming too quickly might have put extra funds in danger. The protocol targeted on consumer safety fairly than restarting operations rapidly.
DISCOVER: 20+ Next Crypto to Explode in 2025
Is XVS Worth Restoration Sustainable After Venus Protocol Phishing Assault?
In accordance with Coinglass data, the market was largely bullish between June and earlier than the assault.
The optimistic and regular funding charge signifies that the XVS token is supported by the final pattern of the derivatives merchants primarily being geared in direction of making good points.
Though durations of bearishness have been skilled, particularly in mid-June, the final pattern is that of a market with a long-term curiosity in lengthy positions.
(Source – XVS Funding Rate, CoinGlass)
The XVS/USDT pair noticed excessive volatility over the previous 24 hours as XVS fell as much as -9% after the assault, then partially recovered.
It briefly dropped under the $6.00 degree earlier than bouncing again above it. At present, XVS trades at $6.11, up +0.58% on the 1-hour chart. Consumers tried to get better after a heavy sell-off.
(Source – XVS USDT, TradingView)
A big purple Heikin Ashi candle on excessive quantity exhibits a attainable liquidation or panic promoting. Costs briefly fell below $5.60 however bounced rapidly.
This drop met sturdy buy-side help, and it might have been a liquidity seize or stop-hunt. Quantity hit 3.23K, a lot increased than the standard hourly turnover.
Technically, the 50 EMA (purple) and 100 EMA (blue) now act as resistance at $6.20 and $6.26. The value is under each EMAs, suggesting a short-term bearish pattern.
The 100 EMA slope is flattening, exhibiting that latest bullish momentum is fading. Earlier than the assault, XVS value had been transferring sideways to barely downward since August. It repeatedly failed to interrupt $6.50. The breakdown exhibits bears have short-term management.
Nonetheless, the quick swing round $6.00 signifies that consumers are defending this degree. The $6.00-$6.26 vary is presumably a call zone.
An upward transfer above the 100 EMA might lure momentum merchants who need $6.40. A decline to under $6.00 might problem latest lows of about $5.60.
This assault exhibits a typical danger in DeFi: phishing scams that trick customers into approving tokens. Attackers can drain funds till permissions are revoked. CertiK reports phishing prompted $410M in losses throughout 132 circumstances within the first half of 2025. Hacken estimates social engineering and phishing price $600M in the identical interval.
EXPLORE: Best Meme Coin ICOs to Invest in 2025
Join The 99Bitcoins News Discord Here For The Latest Market Updates
The put up Is Binance Safu? North Korea Just Stole $13.5M in XVS Crypto Heist appeared first on 99Bitcoins.
