Arbitrum has taken urgent action to secure funds connected to the recent KelpDAO exploit, freezing 30,766 Ether held on Arbitrum One in a wallet associated with the attacker. The intervention was carried out without disrupting user activity on the network.
Security Council Coordinates With Authorities
Arbitrum confirmed that its Security Council worked alongside law enforcement to identify the exploiter and ensure the safety of the network. After conducting technical analysis and internal discussions, the council implemented a process to isolate and transfer the funds without affecting the broader system or its users.
The assets were moved into an intermediary wallet, effectively cutting off access from the original address and freezing the funds. The transfer was completed on April 20 at 11:26 pm Eastern Time, and any future movement of the assets will require governance approval involving key stakeholders.
Shortly before this action, Offchain Labs reported that the attacker appeared to have burned the same 30,766 Ether, valued at about 70.94 million dollars, on the network.
Details Behind the KelpDAO Exploit
The incident originated from the April 18 breach of KelpDAO, which resulted in the loss of around 116,500 rsETH tokens worth approximately 292 million dollars. It stands as one of the largest decentralized finance exploits this year.
The attackers targeted KelpDAO’s cross chain bridge built on infrastructure from LayerZero Labs. According to LayerZero, the breach occurred after the attacker compromised parts of its decentralized verification network by taking control of certain nodes and disrupting normal operations. This allowed a fraudulent cross chain message to be approved and executed.
LayerZero attributed the scale of the attack to KelpDAO’s reliance on a single verification setup, which lacked independent validation. In response, KelpDAO stated that this configuration followed LayerZero’s documented default settings for new deployments and had been confirmed as appropriate during previous discussions between the two teams.
Ripple Effects Across DeFi Protocols
The consequences of the exploit extended beyond the bridge itself, as a significant portion of the stolen assets was moved into lending platforms. On Aave V3, the attacker used rsETH as collateral to borrow large amounts of wrapped Ether.
These positions were left with low health factors, increasing the risk of bad debt within the protocol and adding further strain to the broader decentralized finance ecosystem.#crypto#cryptonews https://coinsignals.net https://t.me/coinsignalpublic
