DeFi platforms experienced over $600 million in losses in recent weeks, with the Kelp DAO exploit contributing significantly to the decline. The total value locked (TVL) has dropped to a one-year low. Kelp DAO, Aave, and LayerZero are blaming each other for the security breach, and the distribution of losses remains unresolved as investigations continue.
Chainalysis flagged a critical security flaw in DeFi, following a $292 million exploit involving KelpDAO on April 20, 2026. The incident revealed vulnerabilities in cross-chain systems, where manipulated inputs bypassed safeguards, leading to undetected asset issuance. The exploit highlights significant trust assumptions in Layerzero’s design, raising concerns over the security of cross-chain protocols.
Aave disclosed potential bad debt between $124 million and $230 million following the Kelp DAO exploit involving rsETH. The platform outlined risk assessment and recovery strategies on April 20, 2026, highlighting the significant financial impact of the security breach. The incident underscores ongoing vulnerabilities in DeFi protocols and the importance of robust security measures.
North Korea's crypto hacking campaign has expanded, with over $500 million stolen in recent weeks through the Drift and Kelp exploits. These incidents, occurring within just over two weeks, suggest a sustained effort rather than isolated breaches, likely driven by North Korea’s financial needs amid ongoing sanctions. DeFi platforms remain a primary target in this ongoing security threat.
Aave faces potential losses up to $230 million after a Kelp DAO bridge exploit. The DeFi platform estimates $123 million in losses if damage is shared across rsETH, or up to $230 million if confined to Layer 2s. The final impact depends on Kelp DAO’s handling of the shortfall, highlighting DeFi security risks.
A Vercel employee's AI tool access led to a data breach involving stolen OAuth tokens, which are now considered a new attack surface in cybersecurity. The breach highlights the risks associated with token security, emphasizing the need for stronger safeguards. The incident underscores the growing threat of token-based attacks in the Web3 and tech sectors.
A review of Keir Starmer's leadership has prompted traders to reassess the political landscape amid rising security concerns. The uncertainty surrounding Labour's future under Starmer has increased market volatility, with traders closely monitoring developments. The review, announced in April 2026, underscores potential instability that could impact crypto markets and investor confidence in the UK political environment.
