What Happened to Venus Protocol?
The decentralized lending protocol Venus Protocol fell victim to an attack that left it with around $2 million in bad debt. The attackers used a vulnerability in the platform's donation mechanism to manipulate the price of the THE token, which is the backbone of the protocol.
This scheme is similar to the Mango Markets hack that occurred in 2022, when attackers also used platform-specific features to bypass token supply limits and withdraw funds. In this case, the attackers repeatedly exceeded the THE token supply cap, causing its value to plummet and profiting at the expense of users.
Why Is This Important for the Industry?
Hacks of decentralized finance applications not only harm users but also undermine the entire ecosystem. They erode trust in DeFi protocols and deter new investors. Each such attack forces development teams to more thoroughly audit their applications for vulnerabilities.
Furthermore, these incidents attract the attention of regulators, who begin to scrutinize the decentralized finance sphere more closely. Tightening requirements and introducing new rules can significantly hinder the development of DeFi projects.
To avoid such incidents, protocols need to pay special attention to smart contract audits and penetration testing. Additionally, it is crucial to implement mechanisms that prevent manipulation of asset prices and circumvention of limitations. Without this, the DeFi industry risks losing the trust of investors.