Decentralized finance protocol Volo disclosed a security breach that drained about $3.5 million in digital assets from select vaults. The team said on X that the exploited assets included Wrapped Bitcoin (WBTC), Matrixdock Gold (XAUm) and USDC. Volo detected the attack, notified the Sui Foundation and ecosystem partners, froze the affected vaults, and moved to contain further exposure.
The protocol said the exploit was confined to three isolated vaults and did not reveal a shared vulnerability across its system. Approximately $28 million in total value locked across other vaults remains safe. Volo stated it plans to absorb the losses rather than pass them on to users, though specific remediation measures have not been finalized.
Volo, a liquid staking platform on the Sui blockchain, lets users stake SUI tokens and receive voloSUI (VSUI) in return. The incident comes amid broader market turbulence after liquid restaking protocol Kelp was hacked for roughly $293 million over the same weekend, intensifying scrutiny across the DeFi ecosystem.
In follow-up updates, Volo reported it has frozen or blocked about $2 million of the stolen funds so far. An initial update said roughly $500,000 tied to the breach was frozen. A later update said the team successfully blocked an attempt by the attacker to bridge 19.6 WBTC, removing those coins from the hacker’s control. Volo said it is working with ecosystem partners to determine the best path to recover and return these funds.
The attack adds to a decade of crypto security losses: more than $17 billion has been stolen from crypto projects over the past ten years, with private-key compromises frequently cited as a leading cause. DefiLlama data shows roughly 22.3% of incidents involve brute-force key compromises, 18.2% involve unknown methods, and 10% stem from phishing attacks on multi-signature wallets—highlighting that many large losses originate from wallet and user-side security issues rather than protocol bugs.
Cointelegraph is committed to independent, transparent journalism. This article was produced in accordance with its Editorial Policy; readers are encouraged to verify information independently.
