Bet On Crypto

Record DeFi Exploit Hits Kelp DAO With $293 Million Loss

The cryptocurrency sector is facing a growing wave of security breaches, with losses surpassing $600 million in less than three weeks. The latest incident involves Kelp DAO, which suffered a major exploit on April 19, losing approximately $293 million—making it the largest DeFi hack so far in 2026.

This attack brings the number of compromised crypto platforms to at least a dozen since the start of the month, highlighting escalating risks across the industry.

Table of content

How the Attack Unfolded

Kelp DAO operates as a liquid restaking platform, allowing users to deposit assets like Ethereum derivatives (such as stETH or cbETH) in exchange for a token called rsETH. This token can then be used across multiple DeFi applications.

To support cross-chain functionality, Kelp relies on a bridge system that connects more than 20 blockchain networks. The exploit targeted this infrastructure—specifically the communication layer powered by LayerZero.

The attacker reportedly used Tornado Cash to fund a wallet before manipulating the system. By sending a fraudulent message to LayerZero’s contract, the hacker tricked the protocol into releasing 116,500 rsETH—around 18% of its circulating supply.

Emergency Measures and Market Reaction

Following the breach, Kelp DAO halted all core operations, including deposits, withdrawals, and token transfers, to contain further damage.

The impact quickly spread across the DeFi ecosystem. Aave, one of the largest lending protocols, suspended rsETH-related markets to prevent additional risk exposure. Despite confirming its own systems were not compromised, Aave’s native token dropped sharply amid market panic.

The interconnected nature of DeFi Wallets means such incidents can create ripple effects, especially when affected assets are widely used as collateral.

A Month of Escalating Crypto Attacks

The Kelp DAO exploit narrowly surpasses the earlier $285 million breach involving Drift Protocol, setting a troubling precedent for April. Investigators believe that attack may have been carried out by North Korean-linked hackers using advanced social engineering techniques.

Since then, the industry has seen a surge in various types of exploits—from exchange breaches to oracle manipulation and phishing schemes. Platforms like Grinex, Hyperbridge, and Rhea Finance have all reported significant losses.

Rising Security Concerns Across the Industry

The increasing frequency and sophistication of attacks underline a critical challenge for the crypto sector. Hackers are exploiting both complex technical vulnerabilities, such as cross-chain bridges, and simpler methods like human error and phishing.

As threats continue to evolve, the industry faces mounting pressure to strengthen its security frameworks and restore user confidence before systemic risks escalate further.

Simonas Brazionis

Blockchain Expert

Simonas is a crypto and blockchain expert with 6 years of experience. Passionate about the industry he educates others on blockchain technology, and continuously expands his knowledge. He has helped many newcomers understand crypto, navigate investments, and stay informed about trends like DeFi and NFTs.