On April 21, the Arbitrum Security Council froze 30,766 ETH, worth approximately $70 million, from the KelpDAO exploiter on Arbitrum One. The funds were moved to a protocol-controlled address to prevent bridging back to the Ethereum mainnet. Peckshield identified the exploiter, prompting the emergency onchain action to secure the assets.
Kelp DAO disputes LayerZero’s account of the $290 million rsETH exploit, claiming the verifier configuration responsible was LayerZero’s default setting, not a rogue choice. The incident, which occurred in April 2026, has intensified the blame game between the two parties, raising concerns over security protocols and default configurations in cross-chain protocols.
Arbitrum's Security Council has frozen 30,766 ETH worth approximately $71 million linked to the Kelp DAO exploit, recovering about a quarter of the $292 million stolen. The freeze is pending a governance vote on the future of the funds. This move highlights ongoing efforts to secure assets affected by the exploit.
Aave faces potential losses of up to $230 million following the Kelp DAO exploit, according to an incident report by Aave Labs and LlamaRisk. The report estimates bad debt exposure between $124 million and $230 million, depending on how Kelp DAO handles its $292 million bridge exploit losses. The incident highlights ongoing security risks in DeFi protocols.
ServiceNow (NOW) stock rose following its $7.8 billion acquisition of cybersecurity firm Armis on April 20, 2026. The deal enhances ServiceNow’s AI-driven security capabilities and asset visibility, strengthening its position in the cybersecurity market. Investors responded positively, as the company aims to expand its unified AI security platform despite broader market concerns.
Angelo Martino, a 41-year-old former cybersecurity incident response employee, pleaded guilty to involvement in BlackCat (ALPHV) ransomware attacks targeting U.S. companies in 2023. His admission highlights ongoing security threats from ransomware groups and underscores the importance of cybersecurity measures. The case emphasizes the risks associated with cybercriminal activities and the need for robust defenses.
Arbitrum's Security Council has frozen $71.5 million in Ethereum linked to the $292 million KelpDAO exploit, marking a significant move in network security. The action, taken on April 21, 2026, has received mixed reactions, with some praising the council’s ability to recover stolen assets, while others raise concerns over decentralization and control within the network.
