Volo Protocol Suffers $3.5M Exploit on Sui Network Vaults

Severity: High (Score: 66.0)

Sources: Coinmarketcap, Theblock.Co, Cryptopotato

Summary

Volo Protocol, a liquid staking platform on the Sui network, experienced a security breach resulting in a loss of approximately $3.5 million from three vaults containing Wrapped Bitcoin (WBTC), Matrixdock Gold (XAUm), and USDC. The protocol detected the exploit and immediately froze the affected vaults to mitigate further losses, confirming that the remaining vaults, valued at around $28 million, were secure. Recovery efforts have successfully blocked or frozen roughly $2 million of the stolen funds, including $500,000 shortly after the attack. Volo has committed to absorbing the financial loss and not passing it on to users while working with ecosystem partners for recovery. The incident is part of a troubling trend in DeFi, with multiple significant exploits occurring in April 2026, including a $292 million breach of KelpDAO. A detailed post-mortem of the incident is forthcoming. Key Points: • Volo Protocol lost $3.5 million due to an exploit affecting three vaults. • The protocol has frozen the affected vaults and is working on recovery efforts. • Volo is committed to absorbing the losses and not impacting users financially.

Key Entities

• Lazarus (apt_group)
• Data Breach (attack_type)
• Kelp DAO (company)
• Volo Protocol (company)
• Drift Protocol (company)
• LayerZero Labs (company)
• North Korea (country)
• T1566 - Phishing (mitre_attack)
• LayerZero (platform)
• Solana (platform)
• Sui (platform)