[Nemo Attacked Due to Vulnerability in Unaudited New Feature, Losses Approx. $2.59 Million] The DeFi protocol Nemo on the Sui blockchain has released an incident report, disclosing that attackers exploited security vulnerabilities in the `flash_loan` and `get_sy_amount_in_for_exact_py_out` functions within the contract, resulting in a loss of approximately $2.59 million in assets. The root cause of the attack lies in the development team's deployment of new features without thorough auditing and failure to promptly address known risks. The attackers transferred the majority of the funds to Ethereum via a cross-chain bridge. Currently, Nemo has frozen the protocol's core functions and submitted a patch for emergency auditing, while also formulating a user compensation and asset recovery plan.