Venus XVS Token Plunges 9% After Exploit-Induced Bad Debt
Venus protocol on BNB Chain faced a $2.15 million bad debt from a Thena market exploit, causing XVS token to drop 9%. Attacker manipulated THE token prices over nine months, leading to liquidations and protocol safeguards.
Quick Take
Exploit in Thena market creates $2.15M bad debt
XVS token falls 9% amid broader market sell-off
Attacker used 7,400 ETH from Tornado Cash
Protocol pauses THE operations and tightens rules
Market Impact Analysis
BearishDeFi exploit leading to bad debt and token price drop amid broader market sell-off.
Speculation Analysis
Key Takeaways
- Venus protocol hit by exploit in Thena market, accruing $2.15 million in bad debt.
- XVS token price fell 9% following the incident amid wider market declines.
- Attacker built THE position over nine months using 7,400 ETH from Tornado Cash.
- Protocol halted THE operations and adjusted rules for vulnerable markets.
- Governance will address the loss through Venus risk fund.
What Happened
Venus protocol on BNB Chain encountered an exploit in its Thena market on March 16. An attacker manipulated THE token to create $2.15 million in bad debt. The scheme involved accumulating THE over nine months, donating millions to bypass checks, and inflating the exchange rate. This allowed borrowing against overvalued collateral before selling THE, triggering a price crash and liquidations. Venus responded by pausing THE borrows and withdrawals, zeroing its collateral value, and restricting markets for assets like BCH, LTC, and AAVE. No user funds outside affected pools were lost, and the protocol emphasized its decentralized nature prevented preemptive action against the flagged address.
The Numbers
XVS token dropped 9% in 24 hours, aligning with a 4.6% decline in the CoinDesk 20 index. Venus maintains $1.4 billion in total value locked. The exploit generated $2.15 million in unrecoverable loans. Attacker funded operations with 7,400 ETH sourced from Tornado Cash. THE price surged from $0.26 to $0.56 during manipulation, then fell 17% upon sell-off. Liquidations extracted $3.7 million to $5.8 million in assets, including tokenized bitcoin, BNB, and stablecoins. Impact centered on THE and CAKE tokens.
Why It Happened
The attacker exploited a code gap in the vTHE contract, enabling donation of 36 million THE to evade cap checks and inflate the market exchange rate by 3.8 times. This overvaluation supported borrowing other assets. Accumulation of THE used anonymized ETH over nine months. Selling the tokens caused a sharp price drop, leading to undercollateralized positions and bad debt. Venus noted the attack avoided flash loans and oracles functioned normally. Community flagged the address earlier, but protocol rules barred intervention without clear violations.
Broader Impact
The incident highlights DeFi's tension between permissionless access and security risks. It may prompt tighter governance and risk management across protocols. XVS price reacted amid broader sell-offs, potentially eroding confidence in BNB Chain lending markets. Adjustments to at-risk assets could influence liquidity and borrowing costs in related tokens.
What to Watch Next
- Monitor Venus governance votes on using the risk fund to cover $2.15 million bad debt.
- Track XVS price recovery and THE token stabilization post-exploit.
- Watch for protocol updates on code fixes and enhanced market safeguards.
This article is for informational purposes only and does not constitute financial advice.
Always late to trends?
Join for the latest news, insights & more.
Disclaimer: Bytewit is an independent media outlet that delivers news, research, and data.
© 2026 Bytewit. All Rights Reserved. This article is for informational purposes only.
