DeFi TVL across top chains fell nearly 11% in 24 hours after the KelpDAO hack. Ethereum's total value locked declined sharply, while Bitcoin, Tron, and BSC experienced smaller drops. The hack exposed vulnerabilities in DeFi protocols, causing a market-wide decline in TVL and highlighting ongoing security concerns in decentralized finance.
LayerZero linked a $290 million exploit of KelpDAO to North Korea’s Lazarus Group, suggesting state-sponsored involvement. The incident, announced on April 20, raises concerns about DeFi security, oracle risks, and the growing integration of restaking ecosystems with major lending platforms. Early findings point to tactics associated with Lazarus-linked clusters like ‘TraderTraitor,’ highlighting increasing DeFi vulnerabilities.
Seiko USA's website was defaced over the weekend by hackers claiming to have stolen its Shopify customer database. The attackers threatened to leak the data unless a ransom is paid. The incident highlights ongoing security vulnerabilities in e-commerce platforms, with no confirmed ransom payment or data leak reported as of now.
A critical security vulnerability, CVE-2026-5760, with a CVSS score of 9.8, has been identified in SGLang, an open-source serving platform. The flaw allows remote code execution through malicious GGUF model files, posing a significant security risk. If exploited, attackers could execute arbitrary code on affected systems, highlighting the need for prompt security updates.
Ripple CTO David Schwartz has delayed plans to develop a DeFi bridge for RLUSD, citing significant security risks similar to the KelpDAO exploit. He warned that integrating such infrastructure could expose XRP to vulnerabilities, emphasizing caution amid ongoing concerns about DeFi protocol security. The decision reflects Ripple’s focus on safeguarding user assets and maintaining protocol integrity.
Ripple CTO David Schwartz highlighted security gaps in DeFi bridge systems after the Kelp DAO exploit, which drained nearly $293 million. He noted many bridges include security tools that could prevent such failures. The incident underscores the importance of robust security measures in blockchain bridges to protect assets and prevent large-scale losses.
Okta's stock rose 4% after Barclays upgraded it from Equalweight to Overweight, raising the price target to $90 from $85 on April 20, 2026. Barclays highlighted increasing demand for identity security, ranking it as the top enterprise spending priority. Okta improved its security vendor ranking to sixth place, up from near the bottom in 2022–2023, citing early opportunities in agentic security.
