Skip to main content
Sign in
VeChain5 decisions on this page

Audit log

Every state-changing event for VeChain: moderation decisions on community submissions, plus corrections and updates from the news pipeline. URL-based decisions carry three independent witnesses — the original source, an Internet Archive snapshot taken at submission time, and a Solana memo signed by our publicly-disclosed publisher key.

  1. #1publishby system:backfill
    2026-05-14 06:02:41Z
    Score: ?? (no score change)
    anchoranchored
    chain
    mainnet-betaslot 419,628,953
    sig
    444Xcn5ZgQzQ…fT55FVH9explorer ↗
    hash
    cmz59eo4JoCW…96bGQ3FCsha256 → base58
    verifying row…full verify ↗
    canonical bytes (6848 B) ▸
    {"actor":"system:backfill","investigation_id":"3b4cc853-28e7-4cd6-8d2d-9da13011cc26","kind":"publish","page_slug":"vechain","published_at":"2026-05-14T06:02:41.641Z","sequence_num":1,"snapshot":{"content_type":"investigation","entity_name":"VeChain","sections":[{"content":"Sunny Lu founded VeChain (originally 'Verification Chain') in 2015. Lu previously served as CIO of Louis Vuitton China, building track-and-trace systems for luxury goods supply chains. This professional background directly influenced VeChain's focus on supply chain verification and anti-counterfeiting. VeChain launched as a subsidiary of Bitse, a blockchain consultancy. The mainnet launched June 2018 with a dual-token model: VET (value transfer/staking) and VTHO (gas/transaction fees).","heading":"Founder and Background","severity":"low","sources":[{"credibility":2,"name":"CryptoUpClose: VeChain Founder Sunny Lu","type":"news_article","url":"https://cryptoupclose.com/vechain-founder-sunny-lu/"},{"credibility":2,"name":"Crunchbase: Sunny Lu","type":"other","url":"https://www.crunchbase.com/person/sunny-lu"}]},{"content":"On December 13, 2019, the VeChain Foundation's buyback wallet was compromised, losing 1.1 billion VET tokens (~$6.5M, ~1% of total supply). The Foundation attributed the breach to misconduct by a finance team member — the private key was stolen during the wallet creation process due to employee negligence. The Foundation worked with cybersecurity firm Hacken to track funds, tagged tainted addresses, and initiated an all-stakeholders vote to implement a permanent blocklist on the VeChainThor blockchain, effectively burning 727M VET in 469 tainted addresses.","heading":"Buyback Wallet Hack (2019)","severity":"high","sources":[{"credibility":1,"name":"CoinDesk: VeChain Foundation Hacked for $6.5M","type":"news_article","url":"https://www.coindesk.com/business/2019/12/13/vechain-foundation-hacked-for-65m-in-vet-token-theft"},{"credibility":2,"name":"CoinTelegraph: VeChain Loses 1.1B VET to Hacker","type":"news_article","url":"https://cointelegraph.com/news/vechain-loses-11b-vet-tokens-to-hacker-in-attack-on-buyback-wallet"},{"credibility":2,"name":"VeChain Foundation: All-Stakeholders Voting","type":"official","url":"https://medium.com/@vechainofficial/announcing-vechain-all-stakeholders-voting-relating-to-the-recent-foundation-buyback-wallet-2916b391492c"}]},{"content":"In its September 2019 financial report, the VeChain Foundation disclosed controlling 27.3% of total VET supply (23.7 billion VET out of 86.7 billion fixed supply). This level of foundation control raises centralization concerns, particularly given the blockchain's built-in fund freezing capabilities. A Bybit Lazarus Security Lab report identified VeChain among 16 major blockchains with mechanisms capable of instantly freezing user funds.","heading":"Foundation Token Concentration","severity":"medium","sources":[{"credibility":2,"name":"AtoZMarkets: VeChain VET Hack Analysis","type":"news_article","url":"https://atozmarkets.com/news/what-caused-the-2019-vechain-hack/"}]},{"content":"VeChain's official X (Twitter) account was hacked on January 18, 2024. Attackers posted a scam giveaway targeting VET and ETH holders, promising to return double the amount sent. The team regained control and deleted the malicious posts before significant spread.","heading":"Social Media Compromise","severity":"medium","sources":[{"credibility":2,"name":"CoinGape: VeChain Account Hacked for Scam Giveaway","type":"news_article","url":"https://coingape.com/vechain-official-account-hacked-used-to-promote-scam-giveaway/"}]},{"content":"VeChain has secured notable enterprise partnerships: Walmart China uses VeChain to trace food supply chains; BMW built VerifyCar to combat odometer fraud; UFC embedded NFC chips in fighter gloves for auction authentication. VeChain was among the first protocols to proactively comply with MiCAR (EU Markets in Crypto-Assets Regulation). The SEC's 2025 staking guidance was viewed as favorable for VeChain's proof-of-authority model. The 2026 roadmap targets an AI agent economy integration.","heading":"Enterprise Adoption and Regulatory Compliance","severity":"low","sources":[{"credibility":2,"name":"CoinDesk: VeChain StarGate Staking Program","type":"news_article","url":"https://www.coindesk.com/press-release/2025/06/30/vechain-launches-usd15m-stargate-staking-program-following-sec-crypto-guidance"},{"credibility":2,"name":"VeChain: 2026 Manifesto","type":"official","url":"https://vechain.org/vechains-2026-manifesto"}]}],"sources_used":[{"credibility":1,"name":"CoinDesk: VeChain Hack","type":"news_article","url":"https://www.coindesk.com/business/2019/12/13/vechain-foundation-hacked-for-65m-in-vet-token-theft"},{"credibility":2,"name":"CoinTelegraph: VeChain 1.1B VET Loss","type":"news_article","url":"https://cointelegraph.com/news/vechain-loses-11b-vet-tokens-to-hacker-in-attack-on-buyback-wallet"},{"credibility":2,"name":"VeChain Foundation: Voting Announcement","type":"official","url":"https://medium.com/@vechainofficial/announcing-vechain-all-stakeholders-voting-relating-to-the-recent-foundation-buyback-wallet-2916b391492c"},{"credibility":2,"name":"CoinGape: VeChain Account Hack","type":"news_article","url":"https://coingape.com/vechain-official-account-hacked-used-to-promote-scam-giveaway/"}],"summary":"VeChain (VET) is an enterprise-focused Layer-1 blockchain founded by Sunny Lu (former CIO of Louis Vuitton China). Launched in 2015 as a subsidiary of Bitse, rebranded and mainnet launched in 2018. The VeChain Foundation's buyback wallet was hacked in December 2019 due to employee negligence, losing 1.1 billion VET (~$6.5M). The Foundation held 27.3% of total token supply as of September 2019. VeChain's official X account was compromised in January 2024 for a scam giveaway. The blockchain has built-in fund freezing capabilities. Enterprise partnerships include Walmart China, BMW, and UFC. VeChain was among the first to proactively comply with MiCAR regulations.","timeline":[{"date":"2015-06-01","event":"VeChain founded by Sunny Lu as subsidiary of Bitse","source":"cryptoupclose.com","source_url":"https://cryptoupclose.com/vechain-founder-sunny-lu/"},{"date":"2018-06-30","event":"VeChainThor mainnet launches with dual-token model (VET/VTHO)","source":"vechain.org","source_url":"https://vechain.org/"},{"date":"2019-12-13","event":"Foundation buyback wallet hacked; 1.1B VET (~$6.5M) stolen due to employee negligence","source":"coindesk.com","source_url":"https://www.coindesk.com/business/2019/12/13/vechain-foundation-hacked-for-65m-in-vet-token-theft"},{"date":"2024-01-18","event":"VeChain official X account compromised for scam giveaway","source":"coingape.com","source_url":"https://coingape.com/vechain-official-account-hacked-used-to-promote-scam-giveaway/"}]},"v":1}
    Verify offline (run on your own machine)
    python -m src.verify_decision 1b373a7f-7b27-4fdd-aead-5657e5d9e338
  2. #2reviewby reviewerreviewer
    2026-06-09 22:00:44Z
    Score: 5252 (no score change)
    The page's core factual claims — the 2019 hack, the 2024 X account compromise, the enterprise partnerships, and the dual-token model — are well-supported by credible sources. The two most significant issues are: (1) the AtoZMarkets URL used to support Foundation token concentration is a 404, and the 27.3% figure conflates non-circulating supply with Foundation-controlled supply; (2) the CoinTelegraph URL for the hack is also a 404. Several partially-supported claims involve the page making slightly stronger assertions than sources warrant (e.g., 'before significant spread' when victims existed, 'among the first' for MiCAR with no ranking data).
    anchoranchored
    chain
    mainnet-betaslot 425,414,183
    sig
    Z49Hq2vQAYZ6…QmvSkwj1explorer ↗
    hash
    u6eph1XbtgPr…s99CJ99xsha256 → base58
    verifying row…full verify ↗
    canonical bytes (995 B) ▸
    {"actor":"reviewer","decided_at":"2026-06-09T22:00:43.681Z","decision":"review","investigation_id":"3b4cc853-28e7-4cd6-8d2d-9da13011cc26","new_score":52,"page_slug":"vechain","prev_score":52,"reason":"The page's core factual claims — the 2019 hack, the 2024 X account compromise, the enterprise partnerships, and the dual-token model — are well-supported by credible sources. The two most significant issues are: (1) the AtoZMarkets URL used to support Foundation token concentration is a 404, and the 27.3% figure conflates non-circulating supply with Foundation-controlled supply; (2) the CoinTelegraph URL for the hack is also a 404. Several partially-supported claims involve the page making slightly stronger assertions than sources warrant (e.g., 'before significant spread' when victims existed, 'among the first' for MiCAR with no ranking data).","score_delta":0,"sequence_num":2,"submission_content_hash":null,"submission_id":null,"submission_kind":null,"submission_valence":null,"v":1}
    Verify offline (run on your own machine)
    python -m src.verify_decision 092c4c4d-a2d1-48f9-aa22-8d0fb3353647
  3. #3review reviseby judgejudge
    2026-06-09 22:00:44Z
    Score: 5242 (-10)
    The page's core factual record — the 2019 buyback wallet hack, the 2024 X account compromise, the enterprise partnerships, and the dual-token model — is well-supported by credible sources including a Tier 1 CoinDesk article. However, the reviewer identified several issues requiring correction: claim_findings[7] reports that the Foundation's 27.3% token-control figure (sections[2]) conflates non-circulating supply with Foundation-controlled supply, and the only cited source for that claim is a 404. claim_findings[10] notes the 'before significant spread' characterization is contradicted by Tier 2 reporting that VeChain promised to reimburse actual victims. Two source URLs across the page return dead links (link_rot: 2), and the StarGate staking section (claim_findings[15]) relies on a press release authored by VeChain rather than independent reporting. No claims were outright disputed, and reviewer confidence is 0.82, supporting a moderate rather than steep penalty.
    anchoranchored
    chain
    mainnet-betaslot 425,414,187
    sig
    5KvYFyXWPfLT…7JvZQQkVexplorer ↗
    hash
    FW2epkAda1wm…BsHARydysha256 → base58
    verifying row…full verify ↗
    canonical bytes (1328 B) ▸
    {"actor":"judge","decided_at":"2026-06-09T22:00:43.681Z","decision":"review_revise","investigation_id":"3b4cc853-28e7-4cd6-8d2d-9da13011cc26","new_score":42,"page_slug":"vechain","prev_score":52,"reason":"The page's core factual record — the 2019 buyback wallet hack, the 2024 X account compromise, the enterprise partnerships, and the dual-token model — is well-supported by credible sources including a Tier 1 CoinDesk article. However, the reviewer identified several issues requiring correction: claim_findings[7] reports that the Foundation's 27.3% token-control figure (sections[2]) conflates non-circulating supply with Foundation-controlled supply, and the only cited source for that claim is a 404. claim_findings[10] notes the 'before significant spread' characterization is contradicted by Tier 2 reporting that VeChain promised to reimburse actual victims. Two source URLs across the page return dead links (link_rot: 2), and the StarGate staking section (claim_findings[15]) relies on a press release authored by VeChain rather than independent reporting. No claims were outright disputed, and reviewer confidence is 0.82, supporting a moderate rather than steep penalty.","score_delta":-10,"sequence_num":3,"submission_content_hash":null,"submission_id":null,"submission_kind":null,"submission_valence":null,"v":1}
    Verify offline (run on your own machine)
    python -m src.verify_decision ab9981aa-fa44-431a-aef7-6c89e01bcffd
  4. #4reviewby reviewerreviewer
    2026-06-14 23:15:57Z
    Score: 4242 (no score change)
    Blue-chip calibration review (Prompt A). Verdict: over-penalized. Page content is treated as accurate; the trust_score band is miscalibrated. VeChain is a long-running, actively developed enterprise blockchain founded in 2015 by Sunny Lu (former CIO of Louis Vuitton China), with a verified mainnet since June 2018, confirmed enterprise partnerships (Walmart China, BMW, UFC), and full MiCAR regulatory compliance achieved in March 2025. The two incidents driving the WARNING band — a 2019 internal employee wallet hack and a 2024 external Twitter account compromise — were both suffered by the entity, not perpetrated by it. The 2019 hack resulted from employee negligence (not leadership fraud), and VeChain actively recovered the majority of funds. Neither incident involved user deception, Ponzi mechanics, exit-scam behavior, or regulatory enforcement. There is no credible allegation of fraud against VeChain as an entity. Scoring 42/WARNING conflates being a victim of security incidents with being a fraudulent operator, which contradicts the band semantics. A score of 65/CAUTIONARY is appropriate: legitimate operator with material historical security caveats (internal control weakness demonstrated in 2019, social media security lapse in 2024) but no unresolved fraud or loss events that endanger current users.
    anchoranchored
    chain
    mainnet-betaslot 426,514,442
    sig
    5vVRG8P9YoLg…1JBuBHVTexplorer ↗
    hash
    BmW3dQZtondR…t2QNHhfYsha256 → base58
    verifying row…full verify ↗
    canonical bytes (1666 B) ▸
    {"actor":"reviewer","decided_at":"2026-06-14T23:15:56.959Z","decision":"review","investigation_id":"3b4cc853-28e7-4cd6-8d2d-9da13011cc26","new_score":42,"page_slug":"vechain","prev_score":42,"reason":"Blue-chip calibration review (Prompt A). Verdict: over-penalized. Page content is treated as accurate; the trust_score band is miscalibrated. VeChain is a long-running, actively developed enterprise blockchain founded in 2015 by Sunny Lu (former CIO of Louis Vuitton China), with a verified mainnet since June 2018, confirmed enterprise partnerships (Walmart China, BMW, UFC), and full MiCAR regulatory compliance achieved in March 2025. The two incidents driving the WARNING band — a 2019 internal employee wallet hack and a 2024 external Twitter account compromise — were both suffered by the entity, not perpetrated by it. The 2019 hack resulted from employee negligence (not leadership fraud), and VeChain actively recovered the majority of funds. Neither incident involved user deception, Ponzi mechanics, exit-scam behavior, or regulatory enforcement. There is no credible allegation of fraud against VeChain as an entity. Scoring 42/WARNING conflates being a victim of security incidents with being a fraudulent operator, which contradicts the band semantics. A score of 65/CAUTIONARY is appropriate: legitimate operator with material historical security caveats (internal control weakness demonstrated in 2019, social media security lapse in 2024) but no unresolved fraud or loss events that endanger current users.","score_delta":0,"sequence_num":4,"submission_content_hash":null,"submission_id":null,"submission_kind":null,"submission_valence":null,"v":1}
    Verify offline (run on your own machine)
    python -m src.verify_decision 280fcbd1-0c61-410d-ae9b-dbf788fcf653
  5. #5review approveby judgejudge
    2026-06-14 23:15:57Z
    Score: 4265 (+23)
    All six claim findings (claim_findings[0–5]) are fully supported with no disputed claims at 0% disputed_pct. The reviewer correctly identifies that the two incidents driving the current WARNING band — the 2019 buyback wallet hack (employee negligence, majority of funds recovered via stakeholder vote, claim_findings[0]) and the 2024 Twitter account compromise (external attacker, promptly remediated, claim_findings[1]) — are both suffered-by-entity events rather than entity-perpetrated fraud. The page content is accurate and stands as published. The current score of 42 demonstrably miscalibrates VeChain against the band semantics: no enforcement actions exist (claim_findings[4]), MiCAR compliance was achieved in March 2025 (claim_findings[2]), and the project remains actively developed with verified enterprise partners (claim_findings[3], [5]). A score of 65 (CAUTIONARY) correctly reflects a legitimate operator with material historical security caveats but no unresolved fraud or ongoing user risk.
    anchoranchored
    chain
    mainnet-betaslot 426,514,447
    sig
    61Qox9TfxyHt…yJMdKgyLexplorer ↗
    hash
    4E4RE2S2WBuk…yhdJUZbksha256 → base58
    verifying row…full verify ↗
    canonical bytes (1359 B) ▸
    {"actor":"judge","decided_at":"2026-06-14T23:15:56.959Z","decision":"review_approve","investigation_id":"3b4cc853-28e7-4cd6-8d2d-9da13011cc26","new_score":65,"page_slug":"vechain","prev_score":42,"reason":"All six claim findings (claim_findings[0–5]) are fully supported with no disputed claims at 0% disputed_pct. The reviewer correctly identifies that the two incidents driving the current WARNING band — the 2019 buyback wallet hack (employee negligence, majority of funds recovered via stakeholder vote, claim_findings[0]) and the 2024 Twitter account compromise (external attacker, promptly remediated, claim_findings[1]) — are both suffered-by-entity events rather than entity-perpetrated fraud. The page content is accurate and stands as published. The current score of 42 demonstrably miscalibrates VeChain against the band semantics: no enforcement actions exist (claim_findings[4]), MiCAR compliance was achieved in March 2025 (claim_findings[2]), and the project remains actively developed with verified enterprise partners (claim_findings[3], [5]). A score of 65 (CAUTIONARY) correctly reflects a legitimate operator with material historical security caveats but no unresolved fraud or ongoing user risk.","score_delta":23,"sequence_num":5,"submission_content_hash":null,"submission_id":null,"submission_kind":null,"submission_valence":null,"v":1}
    Verify offline (run on your own machine)
    python -m src.verify_decision df84f516-64d8-4405-a4e5-00e81ba10be7
How verification works. The “Row integrity” check above is computed in your browser — your machine recomputes the SHA-256 of the canonical bytes and compares against the stored hash. No avoid.net server can fake that check. The “full verify” link goes one level deeper: your browser fetches the on-chain transaction from a Solana RPC node and confirms the same hash is in the memo. If you don’t want to trust either avoid.net or the public RPC, run the CLI verifier on your own machine — python -m src.verify_decision <event_id>.