In a shocking phishing attack, cybercriminals linked to the North Korean hit a Crypto BNB whale to steal $ 13.5 million in binance pieces, and now the XVS price could be in question – here is why.
A large Venus protocol user lost around $ 13.5 million on September 1 after a phishing attack targeted his positions. Channel data and security reports have confirmed the attack. It happened at 3:26 p.m. UTC.
Venus protocol interrupted operations immediately after the incident. The platform said that its intelligent contracts were always secure and that surveys are underway.
We are aware that the user portfolio is drained (the intelligent contract is sure) and actively investigates.
Venus is currently interrupted following security protocols. We will keep you informed as soon as we know more.
– Venus Protocol (@venueProtocol) September 2, 2025
Was the BNB material wallet really safe from phishing?
Beosin First safety Benerescence reported Losses of more than $ 27 million. Later, Peckshield revised the number at $ 13.5 million. The initial figure included the position of the user’s debt. Peckshield said: “The initial estimates were higher because we did not exclude the position of the debt.”
Yu Xian, founder of Slowmist, said The user’s hardware portfolio itself was secure. But the attackers compromised the extension of the browser linked to him.
This gave them borrowing and buy -back access to the assets of the User Venus protocol without the owner knowing it. The case shows that hardware portfolios can always be exposed if the connected software is vulnerable. Even secure storage can fail against prudent social engineering.
The analysis shows that the attack has been planned and well funded. The gas fees came from the exchanges of Monero (XMR) and other funds traced to Exch, a dark web exchange linked to North Korean pirates.
Xian said that the whale was specifically targeted and that it was not a large attack. The front of the Venus protocol was probably safe while the event raises concerns concerning the actors supported by the state using phishing to go after users of high value.
The Venus protocol interrupted the platform to protect the remaining assets. The team confirmed Direct contact with the affected user, and they said that the recovery too early could have endangered. The protocol focused on user safety rather than restarting operations quickly.
Discover: 20+ Next Crypto to explode in 2025
Is the recovery of XV prices lasting after the phishing attack on the Venus protocol?
According to Coinglass dataThe market was mainly optimistic between June and before the attack.
The rate of positive and constant financing indicates that the XV token is supported by the general trend of derivative traders mainly intended to make gains.
Although stock market periods have been lived, in particular in mid-June, the general trend is that of a market with long-term interest in long positions.
(Source – XVS funding rate, quince)
The XVS / USDT pair has experienced high volatility in the last 24 hours while the XV fell at -9% after the attack, then partially recovered.
It fell briefly below the $ 6.00 level before rebounding above. Currently, XVS trades $ 6.11, up + 0.58% on the one hour table. Buyers tried to recover after a high sale.
(Source – XVS USDT, TradingView)
A large Red Heikin Ashi candle in high volume shows a liquidation or a possible panic sale. Prices have briefly dropped by $ 5.60 but rebounded quickly.
This drop experienced a strong purchasing medium, and it could have been a liquidity or a hunt for stopping. The volume reached 3.23K, much higher than the usual hourly turnover.
Technically, the 50 EMA (red) and 100 EMA (blue) now act as resistance at $ 6.20 and $ 6.26. The price is lower than two EMAs, suggesting a short -term lower trend.
The slope of the 100 EMA is flattening, showing that a recent bullish impulse fades. Before the attack, the XVS price had moved laterally since August. He failed to break $ 6.50. The rupture shows that bears have short -term control.
However, the rapid swing around $ 6.00 indicates that buyers protect this level. The fork of $ 6.00 to $ 6.26 may be a decision-making area.
A movement up above the 100 EMA can attract Momentum traders that want $ 6.40. A decrease to less than $ 6.00 could contest the recent stockings of around $ 5.60.
(Source – Hacken)
This attack shows a common risk in Defi: phishing scams that encourage users to approve tokens. The attackers can drain the funds until the authorizations are revoked. Certification reports Phishing caused $ 410 million in losses in 132 cases in the first half of 2025. Hacken estimates Social engineering and phishing cost $ 600 million during the same period.
Explore: Best ICO ICO even to invest in 2025
Join the 99Bitcoins News Discord here for the latest market updates
Is the message Binance Safu? North Korea has stolen $ 13.5 million in XVS Crypto Heist appeared first on 99Bitcoins.
