Beyond the Breach: Why rsETH’s Depegging Demands a New Standard for Bridge Security
Bitcoin.com News·60-word summary·1 min read
On April 23, rsETH, KelpDAO’s liquid restaked token, depegged from Ether to $1,723 following a breach by suspected North Korea-backed hackers. Flare CPO Filip Koprivec emphasized that this incident highlights the need for stronger bridge security as a critical aspect of collateral risk management in Web3. The breach underscores vulnerabilities in cross-chain bridges and the importance of enhanced security standards.
The KelpDAO hack on April 18, 2026, led to the theft of unbacked rsETH tokens and caused a severe liquidity crunch in DeFi, the worst since 2024. Cryptoquant estimates that Aave was exposed to between $124 million and $230 million in bad debt due to the exploit, marking a significant security incident in the DeFi space.
The US is considering targeting Iran’s Hormuz defenses if the ceasefire collapses, raising concerns about regional security and potential impacts on global oil markets. The escalation could destabilize the Strait of Hormuz, a critical chokepoint for oil transportation, and diminish prospects for diplomatic resolution. The situation remains tense as diplomatic efforts continue.
In 2026, US and Israeli airstrikes targeted Tehran airport amid escalating Iran conflict, raising concerns over regional stability. The strikes, part of broader tensions, threaten Iran’s regime and could impact global markets. This development underscores increasing security risks in the region, with potential implications for the broader geopolitical landscape and associated markets.
Hackers are actively exploiting a critical vulnerability in the Breeze Cache WordPress plugin, allowing unauthorized file uploads. This flaw enables attackers to upload malicious files to affected websites, posing security risks. Web administrators are urged to update the plugin immediately to mitigate potential breaches and protect sensitive data from exploitation.
Lido Finance proposed a $6 million support plan for the rsETH token after the KelpDAO hack caused a $290 million shortfall. The funds aim to cover the rsETH depegging and protect DeFi users. The proposal emphasizes a full recovery, with strict conditions ensuring funds only address the specific shortfall, reinforcing ecosystem resilience.
Aave is coordinating a recovery after the $292 million KelpDAO hack, involving industry partners like Lido and EtherFi. The effort aims to contain the fallout, support affected users, and restore confidence in DeFi. The incident highlights the importance of security and resilience in decentralized finance, prompting collaborative responses across the ecosystem.
