Chronic-exploit flag (≥3 incidents)
Venus Protocol's assessment for RD-F-078 — scored red on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.
Evidence summary #
4 distinct protocol-exploiting incidents confirmed across Venus Protocol lifetime (2021, 2022, 2025-02, 2026-03 - most recent: $3.7M loss via donation-attack supply-cap bypass on BNB Chain THE market). Threshold: >=3 incidents = red. Note: CHRONIC badge per PD-022 requires >=3 same-root-cause exploits in 24 months with >=2 post-disclosure; that threshold is not separately met (only 2 donation-vector incidents confirmed: 2025-02 ZKSync wUSDM and 2026-03 THE). F078 fires on total incident count alone.
Sources #
- InternalHacksdatabase Signals Batch 22In-house hacksdatabase batch-22 signals staging file — confirms Venus Protocol REKT4 and Venus+Blizz entries with root cause cluster tagsretrieved 2026-04-28
- Venus Protocol — Rekt IV (fourth exploit)Rekt.news Venus Protocol REKT IV — fourth major exploitretrieved 2026-04-28
Methodology #
Determine whether the protocol has ≥3 distinct incidents in the hack database.
See the full factor methodology and distribution across all protocols →