Kelp DAO Suffers $292 Million rsETH Exploit – Details

bitcoinistPublicado a 2026-04-19Actualizado a 2026-04-19

Resumen

Kelp DAO has suffered a major cross-chain exploit resulting in the loss of approximately 116,500 rsETH, valued at nearly $292 million. The attack targeted a vulnerability in the protocol's cross-chain bridge mechanism, specifically through LayerZero’s EndpointV2. On-chain investigator ZachXBT first identified the breach, noting that the attacker used Tornado Cash to conceal funding sources. In response, Kelp DAO immediately paused all rsETH contracts across mainnet and Layer-2 networks, preventing two additional attempts to drain another $100 million in assets. The protocol is collaborating with LayerZero and Unichain for a full investigation. The incident has impacted the broader DeFi ecosystem, leading Aave to freeze rsETH markets on its V3 and V4 deployments as a precaution, though its own contracts remain secure. The stolen rsETH represents around 18% of its circulating supply, significantly damaging liquidity and user confidence.

Wu Blockchain reports that Kelp DAO has suffered a massive cross-chain exploit that drained approximately 116,500 rsETH, valued at nearly $292 million. The incident raises fresh concerns about the protocol’s security, coming less than a year after a previous disruption tied to a smart contract bug

Kelp DAO Response Prevents Additional Exploit Attempts

According to blockchain data, the attack on the Kelp DAO exploited a weakness in cross-chain communication, specifically targeting the bridge mechanism used to transfer assets across networks. The exploit was executed via a call to the “Iz Receive” function on LayerZero’s EndpointV2, which ultimately triggered the release of funds to an attacker-controlled wallet.

On-chain sleuth ZachXBT was among the first to uncover the breach, estimating losses exceeding $280 million across Ethereum and Arbitrum. The blockchain investigator also noted that the attack addresses had been initially funded via Tornado Cash, indicating a deliberate effort to conceal the funding sources for the highly coordinated attack.

In response to this attack, Kelp DAO implemented an immediate halt to all rsETH contracts across its mainnet and connected L2 networks. The protocol also froze activity across its core contracts and systems that cover deposits, withdrawals, and oracle functions. According to Kelp DAO, an ongoing investigation is underway with LayerZero and Unichain.

Notably, the attacker attempted two additional transactions to drain another 40,000 rsETH, worth close to $100 million. However, Kelp DAO’s swift measures ensured both attempts failed, preventing losses from rising to $391 million.

Aave Freezes rsETH Contracts

In other news, the fallout has quickly spread beyond Kelp DAO, with lending protocols feeling immediate pressure. Aave, one of the largest DeFi lending platforms, responded by freezing rsETH markets across its V3 and V4 deployments.

However, Aave has clarified that its own smart contracts were not exploited, and the measure is purely precautionary to limit further debt exposure to rsETH as they assess the situation. Aave management is also committed to evaluating potential mitigation strategies if any bad debt emerges from the exploits.

rsETH itself is a liquid restaking token designed to represent staked ETH while enabling users to earn additional yield through restaking strategies. It plays a key role in cross-chain DeFi, allowing capital to move seamlessly across multiple networks, including Arbitrum, Base, and Scroll. The scale of the exploit is particularly damaging as the stolen funds represent roughly 18% of rsETH’s total circulating supply, representing a significant hit to both liquidity and user confidence.

ETH trading at $2,345 on the daily chart | Source: ETHUSDT chart on Tradingview.com

Preguntas relacionadas

QWhat was the total value of rsETH drained in the Kelp DAO exploit, and how many tokens were stolen?

AApproximately 116,500 rsETH was drained, valued at nearly $292 million.

QWhich specific function was exploited in the cross-chain communication attack on Kelp DAO?

AThe exploit was executed via a call to the 'Iz Receive' function on LayerZero's EndpointV2.

QHow did Kelp DAO respond to the attack to prevent further losses?

AKelp DAO immediately halted all rsETH contracts across its mainnet and connected L2 networks, and paused activity in its contracts for deposits, withdrawals, and oracle functions. This prevented two additional attempts to drain 40,000 rsETH.

QWhat action did the lending protocol Aave take in response to the Kelp DAO exploit, and why?

AAave froze rsETH markets across its V3 and V4 deployments as a precautionary measure to limit further debt exposure to the compromised token, clarifying that its own smart contracts were not exploited.

QWhat is rsETH and what key role does it play in the DeFi ecosystem?

ArsETH is a liquid restaking token that represents staked ETH, enabling users to earn additional yield through restaking strategies. It allows capital to move seamlessly across multiple networks like Arbitrum, Base, and Scroll, playing a key role in cross-chain DeFi.

Lecturas Relacionadas

Crypto.com Launches Fully Funded OTC Options for Institutional Traders

Crypto.com Exchange has launched Fully Funded Over-the-Counter (OTC) Options for institutional clients, including foundations and VIP traders. This new service provides a private, off-orderbook venue to execute custom European-style vanilla options, addressing issues like slippage and information leakage common in public markets. Key features include customizable tenors of up to three months, 100% collateralization by sellers to mitigate liquidation risk, and physical settlement upon expiration. The offering is highlighted by USD options for covered call strategies, instant quoting via dedicated Telegram/Slack channels, a secure Sales Portal for booking, and automated settlement based on exchange index prices.

TheNewsCryptoHace 15 min(s)

Crypto.com Launches Fully Funded OTC Options for Institutional Traders

TheNewsCryptoHace 15 min(s)

Agents Take Over Traffic Distribution Power: What Are Tencent, ByteDance, and Alibaba Competing For?

In the race to dominate the AI era's entry point, China's tech giants—Tencent, ByteDance, and Alibaba—are aggressively deploying AI Agents to control the future of traffic distribution. Alibaba is pursuing a dual-track "closed loop + openness" strategy. Its Qianwen app is evolving into a super-Agent integrated across its ecosystem (Taobao, Alipay, etc.) to handle complex tasks like travel planning. Concurrently, it is opening its platform to external brands (Luckin Coffee, KFC) and has launched a B2B Agent platform, "Wukong," targeting enterprise automation. Its other flagship, Quark, aims to be an "AI super search box" for information and tasks. ByteDance is executing an omnipresent "sprawl strategy." Its Doubao app boasts over 300 million monthly active users and is evolving into a default AI entry point for daily life, with plans for paid versions and e-commerce integration. Its core weapon is the Kouzi platform, a visual "AI assembly factory" for developers to build custom Agents. ByteDance is also pushing hardware integration, collaborating on AI phones and developing smart glasses to embed Doubao everywhere. Tencent is playing its long-held "ultimate card" by quietly embedding an AI Agent directly into WeChat. This Agent, accessible via a swipe, can understand user commands and automatically execute tasks by calling upon WeChat's millions of mini-programs (e.g., finding and ordering coffee). This leverages WeChat's unparalleled 1.4-billion-user ecosystem to position the app as an AI-powered "service operating system," a move that could dramatically reshape the competitive landscape. The core battleground is shifting from competing for "user screen time" to competing to be the "default execution layer" for user intent. The business model is evolving from an "attention economy" to an "intent economy," where the Agent that can most efficiently fulfill a user's need gains control over service access and token flow. This represents a fundamental change in how users connect with digital services, making the fight for the Agent入口 (entry point) a pivotal moment for redefining industry leadership in the AI age.

marsbitHace 33 min(s)

Agents Take Over Traffic Distribution Power: What Are Tencent, ByteDance, and Alibaba Competing For?

marsbitHace 33 min(s)

Nasdaq Plummets 4% Overnight, $1.3 Trillion Evaporated, U.S. Stocks Suffer Triple Blow

A severe market correction hit US stocks on June 5th, with the Nasdaq plunging 4.18%, erasing $1.3 trillion in chip stock value. The sell-off was triggered by three simultaneous factors. First, Broadcom's earnings report, while showing strong AI chip revenue growth of 143%, provided a Q3 AI revenue forecast that fell short of the most optimistic analyst expectations, casting doubt on the 'infinite AI growth' narrative and sparking a sector-wide rout. Second, a much stronger-than-expected May jobs report (172k vs. 80k expected) significantly increased market bets on a potential Federal Reserve rate hike instead of a cut, putting pressure on high-valuation tech stocks. Third, persistent high oil prices due to the ongoing Iran war and Strait of Hormuz disruption continue to fuel inflation concerns, limiting the Fed's policy options. The combined effect attacked the core market pillars of boundless AI growth and expected monetary easing. While the暴跌 represents a significant valuation repricing, the underlying AI demand remains strong. The market's direction now hinges on the upcoming Fed meeting, further AI company guidance, and developments in the Iran conflict.

marsbitHace 55 min(s)

Nasdaq Plummets 4% Overnight, $1.3 Trillion Evaporated, U.S. Stocks Suffer Triple Blow

marsbitHace 55 min(s)

Could Solana Be The Best Spot Trading Market Globally? This Crypto Pundit Thinks So

Despite ongoing market volatility pushing Solana's price to around $68, crypto pundit Chase, a Solana mobile employee, expresses strong optimism. He argues that after evaluating market structure, Solana has the infrastructure to become the world's best spot trading market and is likely to generate more revenue than any other blockchain. He emphasizes that expanding its retail and trader ecosystem is key for growth. Supporting this view, Solana's network shows robust activity, with its Total Capital Generated (TCG) reaching a new weekly high of $73.6 million. Furthermore, Solana has overtaken Ethereum to become the leading blockchain by tokenized stock market cap, which surged over 54% to $724.1 million recently. At the time of writing, SOL was trading at $64, down nearly 9% in a day.

bitcoinistHace 1 hora(s)

Could Solana Be The Best Spot Trading Market Globally? This Crypto Pundit Thinks So

bitcoinistHace 1 hora(s)

From Banning Doubao to Embracing Honor: Why Did WeChat Suddenly 'Change Its Face'?

The article explores the sudden shift in WeChat's strategy towards AI assistants from mobile phone manufacturers, transitioning from strict opposition to active collaboration. For over a year, WeChat fiercely resisted attempts by phone AI assistants (like ByteDance's Doubao in late 2025) to control its features via GUI automation ("simulated clicking"), citing security and data control concerns. This stance created a significant barrier for system-level AI integration. Now, Tencent has initiated A2A (Agent-to-Agent) partnerships with major phone brands like Honor, Xiaomi, OPPO, and vivo. This model allows a phone's system AI (e.g., Honor's YOYO) to parse a user's voice command and send a structured request directly to WeChat's own internal AI agent via secure APIs. WeChat then executes the action (e.g., sending a message) and returns the result. The article attributes Tencent's "change of face" to strategic pressure. While leading in social app usage, Tencent trails rivals like ByteDance and Alibaba in standalone AI app popularity. WeChat, with its vast mini-program ecosystem, is Tencent's key asset for an AI comeback. The upcoming WeChat AI agent aims to handle tasks like booking and payments within the app. However, phone system assistants remain the primary AI entry point for most users. The A2A collaboration allows Tencent to extend WeChat's AI reach to this crucial system layer while maintaining control over its core functions and data. For phone manufacturers, embracing A2A is a pragmatic move. The GUI route proved unviable due to WeChat's blocks. A2A offers a compliant path to integrate a vital service, enhancing their AI assistants' usefulness. It allows them to focus on developing their own AI ecosystems for other services while cooperating on WeChat access. The collaboration is framed as a mutual, strategic necessity: Tencent gains a distribution channel, and manufacturers gain a key functionality. The partnership relies on a "dual authorization" mechanism for security, requiring both user and app consent for each action. While questions about long-term data privacy practices remain, experts note A2A is more secure and compliant than GUI automation. Ultimately, this cooperation is seen as a tentative, calculated truce. Tencent's long-term goal is to make WeChat an AI-powered "service OS." Phone manufacturers aim to make their system AI the central user interface. Their paths may converge or clash in the future, but for now, the A2A deal represents the opening chapter in the battle for the AI-era user入口, driven by necessity and strategic calculus on both sides.

marsbitHace 2 hora(s)

From Banning Doubao to Embracing Honor: Why Did WeChat Suddenly 'Change Its Face'?

marsbitHace 2 hora(s)

Trading

Spot
Futuros

Artículos destacados

Cómo comprar DAO

¡Bienvenido a HTX.com! Hemos hecho que comprar DAO Maker (DAO) sea simple y conveniente. Sigue nuestra guía paso a paso para iniciar tu viaje de criptos.Paso 1: crea tu cuenta HTXUtiliza tu correo electrónico o número de teléfono para registrarte y obtener una cuenta gratuita en HTX. Experimenta un proceso de registro sin complicaciones y desbloquea todas las funciones.Obtener mi cuentaPaso 2: ve a Comprar cripto y elige tu método de pagoTarjeta de crédito/débito: usa tu Visa o Mastercard para comprar DAO Maker (DAO) al instante.Saldo: utiliza fondos del saldo de tu cuenta HTX para tradear sin problemas.Terceros: hemos agregado métodos de pago populares como Google Pay y Apple Pay para mejorar la comodidad.P2P: tradear directamente con otros usuarios en HTX.Over-the-Counter (OTC): ofrecemos servicios personalizados y tipos de cambio competitivos para los traders.Paso 3: guarda tu DAO Maker (DAO)Después de comprar tu DAO Maker (DAO), guárdalo en tu cuenta HTX. Alternativamente, puedes enviarlo a otro lugar mediante transferencia blockchain o utilizarlo para tradear otras criptomonedas.Paso 4: tradear DAO Maker (DAO)Tradear fácilmente con DAO Maker (DAO) en HTX's mercado spot. Simplemente accede a tu cuenta, selecciona tu par de trading, ejecuta tus trades y monitorea en tiempo real. Ofrecemos una experiencia fácil de usar tanto para principiantes como para traders experimentados.

180 Vistas totalesPublicado en 2024.12.11Actualizado en 2026.06.02

Cómo comprar DAO

Discusiones

Bienvenido a la comunidad de HTX. Aquí puedes mantenerte informado sobre los últimos desarrollos de la plataforma y acceder a análisis profesionales del mercado. A continuación se presentan las opiniones de los usuarios sobre el precio de DAO (DAO).

活动图片