After some investigation, Venus was indeed not hacked, and it seems to be a carefully designed scam. The victim is a DeFi whale, with the address 0x563617b87d8BB3F2f14BB5a581f2E19F80b52008 (abbreviated as whale 0x56), which can be found on Twitter: x.com/ai_9684xtpa/status/17594...… process 1. Around 11:30 PM on September 1, 2025, the hacker deployed the malicious contract 0x7fd8F825E905c771285F510D8e428A2b69A6202a (contract 0x7f). bscscan.com/tx/0x16d803585ceae...… 2. At 5:05 PM on September 2, 2025, the hacker managed to get whale 0x56 to sign a transaction, delegating authority to the hacker's contract 0x7f by calling the upgradeDelegate function of venus. bscscan.com/tx/0x75eee705a234b...… 3. 6 seconds later, the hacker called the start function of the malicious contract, transferred the collateral of whale 0x56, and stole 27 million U, the assets mainly being vUSDT and vUSDC. bscscan.com/tx/0x4216f924ceec9...… Although it wasn't Venus that was stolen this time, it's not your fault that everyone is talking about it, because Venus has been stolen too many times 😂

I don’t quite understand the actual prices of the collateral vUSDT and vUSDC, so the stolen amount may be different, but this is what bscscan shows.