Nemo Protocol, a decentralized finance (DeFi) yield platform working on the Sui blockchain, fell sufferer to a cyberattack that resulted in $2.4 million in losses simply forward of its scheduled upkeep window on Monday and Tuesday.
The safety breach was initially detected by PeckShieldAlert on September 8, which reported through X that roughly $2.4 million in USDC had been drained from Nemo’s techniques.
#PeckShieldAlert @nemoprotocol on @SuiNetwork has been exploited for $2.4M
The hacker bridged $USDC through Circle from Arbitrum to Ethereum. pic.twitter.com/QSB0ec7TZy— PeckShieldAlert (@PeckShieldAlert) September 8, 2025
In accordance with the blockchain safety agency’s investigation, the hacker swiftly moved the stolen belongings through Circle by bridging USDC on Arbitrum to Ethereum.
$6.3M TVL Crashes 75% as Customers Flee Nemo Protocol
Nemo acknowledged the incident in a subsequent tweet, stating that the protocol had skilled a safety breach the earlier night that affected its Market pool.
Nemo skilled a safety incident occurred final night time, impacting the Market pool.
We’re investigating the matter and have suspended all good contract exercise in the interim. We plan to share when extra data turns into out there. All Vault belongings stay untouched.…— Nemo (@nemoprotocol) September 8, 2025
The event staff confirmed that an investigation was in progress to determine the foundation reason behind the vulnerability.
As a precautionary measure, all good contract operations have been briefly halted.
The assault’s influence was instantly felt. In accordance with DeFiLlama knowledge, Nemo’s whole worth locked (TVL) collapsed to roughly $1.57 million from over $6.3 million earlier than the breach.
Person withdrawals exceeded $3.8 million value of USDC and SUI tokens as traders rushed to exit, fearing the exploit’s scope could be extra in depth than initially disclosed.
The breach particularly focused Nemo’s yield-trading mechanism, which permits customers to divide staked belongings into Principal Tokens (PTs) and Yield Tokens (YTs) for yield hypothesis functions.
In accordance with blockchain safety auditor CertiK, safety dangers could come up from a number of sources, together with coding errors, blockchain community vulnerabilities, and programming language limitations.
Sui Blockchain Safety Disaster Contributed to $2.37 Billion DeFi Losses in 2025
Notably, the Nemo safety breach marks the third main hack concentrating on DeFi protocols this month.
Earlier in September, Venus protocol misplaced $13.5 million to attackers, adopted by an $8.4 million theft from the Bunni protocol.
Equally, within the Sui ecosystem, the Nemo incident follows one other vital breach on the Layer-1 community from earlier this 12 months.
On Might 22, Cetus Protocol, a distinguished decentralized trade and liquidity supplier, suffered a $223 million exploit.
The attacker leveraged an arithmetic overflow flaw in a third-party code library to finish the drain inside quarter-hour.
Furthermore, these DeFi-focused assaults are on the rise in 2025.
SlowMist’s mid-year evaluation revealed that the blockchain sector skilled over $2.37 billion in losses throughout 121 safety incidents through the first half of the 12 months.
DeFi protocols alone accounted for 76% of those instances, though centralized exchanges recorded increased particular person losses.
A complementary report from Hacken’s 2025 mid-year safety evaluation estimated whole crypto business losses at over $3.1 billion inside the first six months.
Entry management vulnerabilities, together with misconfigured wallets and compromised legacy keys, represented 59% of those losses, whereas DeFi-specific good contract exploits accounted for $263 million, or roughly 8%.
A current interview between Cryptonews and Mitchell Amador, founder and CEO of Immunefi, highlighted why typical safety methodologies show insufficient in Web3’s open-source ecosystem.
Amador defined that “Conventional audits, being static and pre-launch targeted, fail to determine post-deployment vulnerabilities current in dynamic DeFi environments.”
He advocated for bug bounty packages as an answer to incentivize moral hackers, basically restructuring cybersecurity economics to make defensive measures extra profitable than offensive ones.
The publish Nemo Protocol Loses $2.4M to Hackers on Sui Blockchain Earlier than Deliberate Upkeep appeared first on Cryptonews.