News
22 Apr 2026, 15:03
Volo Protocol freezes stolen funds after $3.5M DeFi exploit on Sui

Volo Protocol, the operator of vaults that allow users to earn yields on their assets on Sui, announced that it has started to freeze part of the $3.5 million that hackers stole in an April 21 exploit, in what has become the latest case in a historically bad month of security breaches for DeFi protocols. Volo Protocol first reported the $3.5 million hack on its official channels the same day the exploit occurred, after discovering that hackers had looted WBTC, XAUm, and USDG from its Volo Valuts. Suilend quickly updated that none of its markets were affected by the incident and that user funds are safe, with deposits, borrowing, and withdrawals functioning as usual. For now, it said it will continue to monitor things, as this episode did not need the kind of preemptive halting of operations it initiated after the rsETH incident on KelpDAO. The initial $3.% million loss that Volo reported is the latest million-dollar DeFi exploit in April, a month that has seen protocols lose almost 4X the combined total for the first three months of 2026. Volo has started to freeze hacker bounty It has not been all bad news for Volo Protocol as the project’s latest updates claim it has “successfully intercepted and blocked” attempts to swap 19.6 WBTC into unrecoverable assets. The Wrapped Bitcoin (WBTC) that Volo intercepted is worth about $1.5 million based on Bitcoin’s current price, as these assets are meant to maintain a 1:1 peg to the original asset they wrap. It is standard practice for hackers to quickly swap assets native to the protocols they attack into unrecoverable ones, such as ETH and BTC, to avoid freezes and clawbacks. As Cryptopolitan reported , KelpDAO hackers have already begun swapping their loot into BTC via Thorchain to avoid a repeat of the $71 million asset freeze on Arbitrum. The 19.6 WBTC seizure followed an earlier $500,000 freeze that it initiated “working closely with ecosystem partners.” The protocol assured that it is working with those ecosystem partners to plan how to recover the frozen tokens. The freezes and potential recoveries are being regarded as positive steps toward the project’s commitment to absorb losses in its initial message to users. Is Sui safe after the Volo hack? Citing sources, Cryptopolitan reported that the KelpDAO hack was an Ethereum L2 problem, with almost no impact on the mainnet. However, the DeFi contagion continues to spread across protocols with exposure to the rsETH token that was stolen in the exploit. Similar questions have been raised about the Sui ecosystem by users of Volo Protocol and others with exposure to its vaults. Volo already assured that the approximately $28 million in TVL secured in its vaults is safe, as the exploit affected only three vaults. It also ensured that its other vaults are not susceptible to the specific attack vector, which appears to be an admin key compromise, that caused this episode. As a precautionary measure, Volo also said it had frozen all its vaults at least until it could provide a full picture of the incident, along with a plan to make users whole. Suilend backed up its zero-contagion claims in its own post. SUI is trading at $0.97 as of writing time, up about 2.72% over the past day, riding the positive momentum wave led by Bitcoin in response to positive news on the Iran conflict, which has rocked Middle Eastern geopolitics and global markets. SUI price remains up despite a dip in DeFi TVL over the last 24 hours. Source: CoinMarketCap Total value locked on the network is down about 3.4% over the past day, dropping about $20 million during that period. Don’t just read crypto news. Understand it. Subscribe to our newsletter. It's free .
22 Apr 2026, 13:57
Market Updates: Umbra Responds to Kelp Exploit, New York Sues Gemini and Coinbase Over Prediction Markets, Nium Taps Coinbase for USDC Settlement

Latest Market Updates: As of 22nd April 2026. Today in crypto, Umbra shut down its front end to curb laundering activity after roughly $800,000 in stolen funds tied to the $280 million Kelp exploit were routed through its protocol. Visit Website
22 Apr 2026, 13:50
Volo Protocol Loses $3.5 Million in Sui Blockchain Exploit, Blocks WBTC Bridge Attempt

Volo Protocol, a liquid staking and BTCFi platform on the Sui blockchain, confirmed a $3.5 million security exploit this week, tied to a compromised vault admin private key. Key Takeaways: Volo Protocol lost $3.5 million from three Sui-based vaults on April 21, 2026, following a compromised admin private key. GoPlus Security and ExVul confirmed a
22 Apr 2026, 12:50
Volo Protocol loses $3.5M in targeted Sui vault exploit

Volo Protocol suffered a security breach that led to the loss of approximately $3.5 million in digital assets after a targeted exploit hit a small set of its vaults on the Sui blockchain. The incident affected assets including WBTC, XAUm, and USDC, prompting the team to immediately freeze all vault operations to prevent further damage. The attack was quickly detected by the protocol, which then alerted the Sui Foundation and other ecosystem partners to assist in containment efforts. Early action allowed the team to halt further withdrawals and limit the scope of the damage to only a few vaults. According to the project’s official communication, the exploit was isolated to three specific vaults, while the remaining system infrastructure was not impacted. Despite the loss, Volo Protocol emphasised that the broader platform remains structurally intact. The team confirmed that approximately $28 million in total value locked (TVL) across other vaults has not been affected. Immediate response and containment measures Once the exploit was identified, Volo Protocol took several immediate steps to contain the situation. All vaults were frozen across the platform, halting any further deposits or withdrawals. The protocol also began working closely with on-chain security specialists and investigators to trace the movement of stolen funds. In parallel, some of the attacker’s activity was partially disrupted, with reports indicating that around $500,000 worth of assets were successfully frozen during recovery efforts. In addition, attempts to move approximately 19.6 WBTC through bridging mechanisms were also blocked, reducing potential losses. The assets involved in the exploit included wrapped Bitcoin (WBTC), XAUm (a gold-backed token), and USDC. These assets were removed from the affected vaults through what the team described as a targeted exploit, though full technical details are expected to be disclosed in a post-mortem report. Volo Protocol prepared to absorb the financial loss In its official statement , Volo Protocol confirmed that it is prepared to absorb the financial loss associated with the incident. The team stated clearly that it intends not to pass the burden of the $3.5 million loss onto users. Instead, it plans to manage the recovery internally while continuing to secure the remaining vault infrastructure. The project also highlighted that no evidence currently suggests a shared vulnerability across unaffected vaults. This assessment was made after initial internal reviews and coordination with external ecosystem partners. As a result, the remaining vaults are considered operationally safe, although still temporarily frozen as a precaution. All vault activity will remain suspended until a full technical review is completed. The team has committed to releasing a detailed post-mortem report once investigations conclude, outlining the root cause of the exploit and the corrective measures being implemented. The post Volo Protocol loses $3.5M in targeted Sui vault exploit appeared first on Invezz
22 Apr 2026, 12:20
Lazarus Group has become especially dangerous with new Mach-O Man attack: CertiK

North Korea's Lazarus Group has a new attack vector that allows it to exploit an apparently routine business call as a gateway into a target's systems.
22 Apr 2026, 12:15
Volo Protocol suffers $3.5 mln exploit in April’s third crypto hacking incident

The Volo Protocol was exploited for $3.5 million in a major security breach.









































