Verify a decision

{"actor":"system:backfill","investigation_id":"fd900059-8f79-4bca-9684-bf7b8af1b6b4","kind":"publish","page_slug":"evoq-finance","published_at":"2026-05-29T02:35:02.723Z","sequence_num":1,"snapshot":{"content_type":"investigation","entity_name":"Evoq Finance","sections":[{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://docs.evoq.finance","type":"other","url":""},{"credibility":3,"name":"https://docs.evoq.finance/protocol-overview/how-it-works","type":"other","url":""},{"credibility":3,"name":"https://cryptoslate.com/press-releases/meet-the-most-valuable-builder-mvb-season-8-cohort/","type":"other","url":""},{"credibility":3,"name":"https://defillama.com/protocol/evoq-finance","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://www.panewslab.com/en/articles/fdd02dfb-fadb-4c6f-ad87-f949fc5e21b5","type":"other","url":""},{"credibility":3,"name":"https://www.chaincatcher.com/en/article/2204770","type":"other","url":""},{"credibility":3,"name":"https://phemex.com/news/article/evoq-finance-loses-420000-in-smart-contract-attack-on-bnb-chain-18037","type":"other","url":""},{"credibility":3,"name":"https://www.mexc.com/news/evoq-finance-contract-attacked-losing-approximately-420000/92071","type":"other","url":""},{"credibility":3,"name":"https://x.com/GoPlusSecurity/status/1965805930504974515","type":"other","url":""},{"credibility":3,"name":"https://www.binance.com/en/square/post/09-10-2025-evoq-finance-suffers-420-000-loss-in-bnb-chain-smart-contract-attack-29506058045666","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://www.chaincatcher.com/en/article/2204770","type":"other","url":""},{"credibility":3,"name":"https://medium.com/@bludesocial/evoqs-2025-roadmap-stewarding-capital-efficiency-d293a1e4c4e3","type":"other","url":""},{"credibility":3,"name":"https://certik.com/resources/blog/upgradeable-proxy-contract-security-best-practices","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://docs.evoq.finance/security/audits","type":"other","url":""},{"credibility":3,"name":"https://docs.evoq.finance/security/general-risks","type":"other","url":""},{"credibility":3,"name":"https://docs.evoq.finance/protocol-overview/risk-fund","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://defillama.com/protocol/evoq-finance","type":"other","url":""},{"credibility":3,"name":"https://cryptoslate.com/press-releases/meet-the-most-valuable-builder-mvb-season-8-cohort/","type":"other","url":""},{"credibility":3,"name":"https://medium.com/@bludesocial/evoqs-2025-roadmap-stewarding-capital-efficiency-d293a1e4c4e3","type":"other","url":""},{"credibility":3,"name":"https://x.com/Evoq_Finance","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://github.com/evoqfinance/evoq-finance-contracts","type":"other","url":""},{"credibility":3,"name":"https://medium.com/@bludesocial/evoqs-2025-roadmap-stewarding-capital-efficiency-d293a1e4c4e3","type":"other","url":""},{"credibility":3,"name":"https://www.linkedin.com/company/evoq-finance","type":"other","url":""},{"credibility":3,"name":"https://cryptoslate.com/press-releases/meet-the-most-valuable-builder-mvb-season-8-cohort/","type":"other","url":""}]}],"sources_used":[],"summary":"Evoq Finance is a peer-to-peer lending optimizer built on BNB Chain that routes deposits through Venus Protocol to match suppliers and borrowers directly, aiming for improved capital efficiency. On September 10, 2025, the protocol suffered a critical security incident in which an attacker compromised the owner's private key, used the transferOwnership function to seize contract control, and upgraded the proxy contract to a malicious version, draining approximately $420,000 from both the protocol and user-approved accounts. Following the exploit, the protocol's total value locked collapsed to near zero and no verified public post-mortem or recovery plan has been identified. ZachXBT has flagged this entity.","timeline":[{"date":"2024-10-28","event":"Evoq Finance selected for Binance Most Valuable Builder (MVB) Season 8 accelerator program, described as a 'pool-based P2P lending protocol that leverages Venus protocol on BSC.' Program kicked off in Dubai.","source":""},{"date":"2024-12-12","event":"HashDit completes a security audit of Evoq Finance's smart contracts.","source":""},{"date":"2025-01-09","event":"Zokyo completes a second security audit of Evoq Finance's smart contracts.","source":""},{"date":"2025-01-01","event":"Evoq Finance publishes its 2025 roadmap targeting Q1 mainnet open beta, Q2 public audit, Q3 token generation event, and Q4 multi-protocol expansion.","source":""},{"date":"2025-09-10","event":"Evoq Finance smart contract on BNB Chain exploited. Attacker compromises the owner private key (EOA 0xF08d1c), transfers contract ownership to attacker address 0x7b416F, upgrades proxy to malicious implementation, and drains approximately $420,000 from the protocol and user-approved accounts. GoPlus Security issues a public alert.","source":""},{"date":"2025-09-10","event":"GoPlus Security and multiple crypto news outlets urge users to revoke token approvals for contract 0xF9C74A65B04C73B911879DB0131616C556A626bE. Post-incident security recommendations include multisignature controls and key rotation.","source":""},{"date":"2025-09-10","event":"Evoq Finance TVL collapses to near zero following the exploit. Active loans fall to $0 on DefiLlama.","source":""}]},"v":1}