Venus Protocol Hit by $3.7M Supply Cap Attack

Venus Protocol, a decentralized lending and borrowing platform on BNB Chain, confirmed Sunday it suffered a supply cap attack that drained more than $3.7 million from its liquidity pools — exploiting the Thena (THE) token in a move that was silent, methodical, and devastating enough to force emergency halts across multiple low-liquidity markets.

How the Exploiter Pulled It Off

What is a supply cap attack in DeFi lending?

A supply cap attack is when a threat actor quietly corners a token's circulating supply to manipulate a lending protocol's risk parameters. That's exactly what happened here. According to Allez Labs, Venus Protocol's own risk manager, the attack unfolded in two phases: a slow, deliberate accumulation of roughly 84% of THE's total market cap, followed by a targeted lending strike against the protocol's CAKE and Thena pools.

Once the exploiter held that dominant position, the mechanics were simple. They deposited THE tokens as collateral and borrowed 6.67 million CAKE tokens, 1.58 million USDC, 2,801 BNB, and 20 Bitcoin — cleaning out the affected pools before the protocol's automated defenses could respond. Only the CAKE and THE pools were directly compromised, but Venus halted withdrawals and borrowing across other low-liquidity markets as a precautionary measure.

The Risk Manager Was Already in the Room — Did It Matter?

Here's the uncomfortable part. Allez Labs wasn't brought in after the attack — they were already Venus Protocol's designated risk manager when it happened. And yet the exploiter managed to quietly acquire 84% of THE's market cap before anyone flagged it as a red flag. That deserves more scrutiny than the incident report is giving it.

The Venus Protocol team confirmed the suspicious activity on Sunday, describing it as a supply cap exploit executed against the Thena liquidity pool. The platform did not respond to requests for comment by publication time. Wu Blockchain first reported the total loss figure of $3.7 million. As for THE — the Thena token was sitting at $0.2255, down more than 17% in 24 hours, per CoinMarketCap data.

The suspicious trading activity is suspected to be a supply cap attack that was executed in two phases: a steady accumulation of about 84% of the total THE token market cap, coupled with a lending attack.

Does This Signal a Wider DeFi Problem?

DeFi hacks actually fell sharply in February — $49 million total, the lowest in nearly a year according to blockchain security firm PeckShield. So Venus landing in the headlines in March is a reminder that the lull was temporary, not structural. Supply cap attacks are not new, but they remain particularly effective against protocols with thin token markets and permissive collateral policies.

The Venus incident adds to a pattern worth watching: attackers are less interested in brute-force contract exploits and more interested in gaming market mechanics — accumulating supply, manipulating oracle prices, draining pools through the protocol's own logic. That's harder to patch than a code bug.