TLDR
- KelpDAO hacker swaps $175M ETH to BTC, reducing recovery chances
- THORChain processes $800M volume from KelpDAO exploit laundering
- KelpDAO breach triggers Aave bad debt and DeFi risk concerns
- Arbitrum freezes part of KelpDAO stolen ETH amid recovery push
- KelpDAO attacker exits fast as cross-chain swaps hide stolen funds
KelpDAO recorded a major breach as the attacker rapidly converted stolen Ether into Bitcoin through cross-chain swaps. The KelpDAO exploit moved 75,700 ETH within days, while laundering activity reduced recovery prospects significantly. KelpDAO remains central to ongoing mitigation efforts as protocols attempt to contain wider fallout.
KelpDAO Exploit Funds Move Through THORChain
KelpDAO suffered a large exploit that drained over 116,500 restaked Ether from its LayerZero-powered bridge. Subsequently, the attacker moved 75,700 ETH, worth about $175 million, into fresh wallets for obfuscation. The movement showed a clear attempt to avoid detection and tracking across blockchain networks.
The attacker relied heavily on THORChain to execute cross-chain swaps from Ether into Bitcoin. This approach increased transaction complexity and reduced traceability across networks. As a result, the attacker completed most conversions within a short time frame.
THORChain processed nearly $800 million in trading volume from these transactions. The protocol also generated approximately $910,000 in fee revenue from the activity. KelpDAO remained the focal point as the laundering process neared completion.
KelpDAO Recovery Efforts Face Limitations
KelpDAO faces challenges as most stolen assets have already moved beyond immediate recovery channels. However, Arbitrum’s security council froze 30,766 ETH linked to the exploit. This portion remains secured in an intermediary wallet requiring governance approval for further access.
Blockchain data showed the attacker emptied the primary wallet after routing funds through THORChain and Umbra. These steps reduced transparency and complicated forensic tracking efforts. As a result, recovery efforts now depend largely on the frozen tranche.
Analysts identified transaction patterns consistent with an exit strategy rather than asset retention. The attacker acted quickly and avoided holding large balances in identifiable wallets. KelpDAO now shifts focus toward containment rather than full asset recovery.
KelpDAO Fallout Extends to Aave and DeFi
KelpDAO triggered broader disruptions across decentralized finance platforms, especially Aave. The attacker used stolen assets as collateral to borrow funds, creating significant bad debt exposure. Early estimates placed this bad debt near $195 million across affected positions.
Aave continues to coordinate with KelpDAO and other protocols to reduce systemic impact. Risk providers outlined two possible outcomes involving loss distribution among rsETH holders. One scenario reduces Aave’s exposure but risks a 15% depeg of rsETH from Ether.
The second scenario assigns losses to layer-two holders while leaving Aave with larger debt. Both approaches carry trade-offs and affect protocol stability differently. KelpDAO remains central to resolution discussions as stakeholders evaluate the next steps.
KelpDAO continues to work on a structured response to protect users and stabilize operations. The protocol aims to strengthen safeguards while managing the aftermath of the exploit. Hence, KelpDAO remains under scrutiny as recovery and mitigation efforts progress.
