COINTURK NEWSCOINTURK NEWSCOINTURK NEWS
  • Crypto Tracker App
  • Bitcoin
  • Altcoin
  • Ethereum
  • Advertise
  • Contact
  • TURTURTUR
  • ESESES
Search
© 2024 COINTURK NEWS. All Rights Reserved.
Reading: DeFi rocked as $292 million Kelp hack hits Aave and ETH
Share
Font ResizerAa
COINTURK NEWSCOINTURK NEWS
Font ResizerAa
Search
  • Crypto Tracker App
  • Bitcoin
  • Altcoin
  • Ethereum
  • Advertise
  • Contact
  • TURTURTUR
  • ESESES
Follow US
© 2025 >> COINTURK NEWS
Powered by LK SOFTWARE
COINTURK NEWS > DeFi News > DeFi rocked as $292 million Kelp hack hits Aave and ETH
DeFi NewsEconomy

DeFi rocked as $292 million Kelp hack hits Aave and ETH

In Brief

  • 🚨 A $292 million exploit in Kelp sent shockwaves through DeFi's top lending pools.

  • Fraudulently minted tokens in $ETH systems drained real assets from Aave.

  • Lending platforms were left holding worthless collateral after the attack.

  • ⚠️ Critical data: Industry leaders warn of growing systemic vulnerabilities in DeFi.

Ömer Ergin
Ömer Ergin 11 hours ago
Share
SHARE

A major breach in decentralized finance over the weekend resulted in a loss of approximately $292 million, placing renewed attention on security vulnerabilities and risk management gaps. The incident affected prominent lending platforms, including Aave, and raised fresh debate about the resilience of current DeFi infrastructure.

Contents
Kelp protocol flaw leads to large-scale exploitLending pools hit by domino effectIndustry impact and lingering questions

Kelp protocol flaw leads to large-scale exploit

Initial investigations indicate that the attack targeted rsETH, an Ethereum-based yield token, exploiting the mechanics behind its cross-chain transfer system. The attacker manipulated a vulnerability to mint a large volume of virtual tokens without sufficient collateral. These tokens were rapidly funneled into lending protocols as collateral, enabling the fast withdrawal of real digital assets—chiefly from Aave, one of DeFi’s largest lending pools.

Charles Guillemet, CTO of Ledger, told CoinDesk that the exploitation centered around the LayerZero bridge component, which permits asset transfers between blockchains. Ordinarily, these bridges lock up assets on one chain while issuing equivalent tokens on another, relying on validators or oracles for confirmation. In this instance, Kelp’s reliance on a single signature authority led to the attacker seizing control, triggering massive unauthorized minting of rsETH.

“It appears the attacker was able to sign the message permitting a huge rsETH mint; exactly how they obtained this access remains unclear,” explained Guillemet.

Lending pools hit by domino effect

The illicitly produced tokens quickly entered Aave’s lending pools, where the perpetrator used them as collateral to borrow real Ether (ETH) and withdraw from the system. The impact escalated beyond a technical glitch, exposing significant systemic risk as Aave and other platforms were left holding vast reserves of effectively worthless rsETH while genuine assets vanished.

Michael Egorov, founder of Curve Finance, pointed out that placing absolute authority in a single party creates critical vulnerability. Even a minor oversight in this architecture, he warned, can spark a chain reaction with wide-reaching effects.

“Due to the unsellable rsETH and the maximum ETH withdrawals on Aave, nobody can withdraw Ether right now. This is driving up the risk of a classic bank run as users rush to pull funds,” Egorov commented.

Industry impact and lingering questions

The attack followed closely on the heels of a $285 million loss in the Solana-based Drift protocol just weeks earlier. As DeFi’s total sector value approaches $90 billion, the spate of major security incidents is shaking investor confidence. In the aftermath, total assets on Aave plunged by nearly $6 billion, while the platform’s own token fell almost 15% in the past 24 hours.

Details of the breach remain murky. Experts have yet to confirm whether LayerZero’s official node was hacked, misconfigured, or deceived via some other method. The true identity of the attacker (or attackers) is unknown, though the scale and sophistication suggest professional involvement.

The episode starkly illustrates how increased interconnection among DeFi platforms amplifies the risk that a single fault can destabilize an entire ecosystem. Egorov also argued that pooling risk in lending protocols speeds up crisis contagion during such events.

Another criticism targeted the onboarding process for new assets. Observers stressed that Kelp’s one-to-one validator setup was a weak point that should have been identified and addressed. Despite the setback, Egorov believes DeFi will ultimately grow stronger and adapt by learning from these crises.

While repeated protocol failures prompt system-wide improvements, each incident significantly erodes user trust. Guillemet highlighted that the net result is a gradual erosion of confidence in DeFi, coupled with a high probability of even more breaches and vulnerabilities emerging in the coming years.

You can follow our news on Telegram, Facebook & Coinmarketcap & X
Disclaimer: The information contained in this article does not constitute investment advice. Investors should be aware that cryptocurrencies carry high volatility and therefore risk, and should conduct their own research.

You Might Also Like

Spark’s January rsETH delisting protects users as Aave hits 100% ETH utilization

292 million dollars lost in massive Kelp DAO hack

Stabull sees surge in automated DeFi volume on three blockchains

DeFi sector hit by $580 million in April losses

Bitcoin drops below $75,700 as Iran rejects US talks

Ömer Ergin 20 April, 2026 - 2:12 am 20 April, 2026 - 2:12 am
Share This Article
Facebook Twitter
Share
Previous Article Stabull sees surge in automated DeFi volume on three blockchains
Next Article Ethereum facing $2,200 liquidation risk as buyers struggle
Leave a comment

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Stay Connected

8.1k Like
21.1k Follow
1.1k Follow

Latest News

Bitcoin options worth $7.9 billion expire Friday
Bitcoin (BTC) Cryptocurrency News
Spark’s January rsETH delisting protects users as Aave hits 100% ETH utilization
DeFi News
Lydian card launches, enables crypto spend at 150M merchants
Cryptocurrency News
//

COINTURK was launched in March 2014 by a group of technology enthusiasts who believe that Bitcoin will be as important as the internet in the world of the future thanks to the amazing technology underlying it.

CRYPTOCURRENCY LIVE PRICES

  • Bitcoin (BTC) Live Price
  • Ethereum (ETH) Live Price
  • Ripple (XRP) Live Price
  • Solana (SOL) Live Price
  • Dogecoin (DOGE) Live Price
  • Cardano (ADA) Live Price
  • Chainlink (LINK) Live Price

OUR PARTNERS

  • COINMARKETCAP
  • COINGECKO
  • BITCOINHABER
  • BH NEWS
  • 21MILYON
  • NEWSLINKER

OUR COMPANY

  • About Us
  • Cookie Policy
  • Advertising
  • Contact
COINTURK NEWSCOINTURK NEWS
Follow US
COINTURK NEWS 2026
Powered by LK SOFTWARE
Welcome Back!

Sign in to your account

Lost your password?