Venus Protocol's vTHE market on BNB Chain suffered $3.7M in losses — $2.15M unrecoverable bad debt — after an attacker executed a donation attack, transferring THE tokens directly to the vTHE contract to inflate the exchange rate and bypass the supply cap. The vulnerability was flagged by auditors in 2023 and left unremediated. An identical attack hit Venus's zkSync deployment in February 2025. Source: https://rekt.news/venus-protocol-rekt4