Attack on Kelp DAO and Its Consequences for Aave
Analysis of the effects of the Kelp DAO attack on Aave and DeFi and potential strategies for rebuilding security.
Table of contents
Attack on Kelp DAO and Its Consequences for Aave
On April 18, 2023, a significant attack on Kelp DAO resulted in a major leak of funds and severely impacted the reputation of Aave, one of the largest DeFi protocols. Hackers withdrew 116,500 rsETH valued at $293 million via the cross-chain bridge LayerZero, delivering a severe blow to both Kelp and the entire DeFi industry.
Analysis of the Kelp DAO Exploit
The attack began when attackers breached the RPC servers used by the decentralized network LayerZero Labs. The hackers substituted server responses and used this to withdraw funds through modified system nodes. These actions are linked to the notorious North Korean group TraderTraitor, known for hacking Bybit and Ronin.
Impact on Aave and the DeFi Market
The attack on Kelp triggered withdrawals from Aave, whose total value locked (TVL) fell from $26.3 billion to $17.7 billion. The price of the AAVE token also dropped to $91, losing 15% of its value. The ensuing panic among users highlighted the vulnerability of less protected segments of the DeFi market.
Aave’s Response and Measures
Following the incident, Aave shifted focus to the automated Umbrella protection system aimed at minimizing losses. However, the available resources of $55 million were insufficient to cover the damage, undermining the trust of investors and users.
Possible Compensation Strategies
The founder of DefiLlama suggested three scenarios to emerge from the crisis, including socialization of losses, redistribution on L2 networks, and a complex return of funds to the pre-attack state. These directions show different approaches to managing the consequences of such incidents.
Lessons for DeFi and the Way Forward
The hack clearly demonstrates the importance of diversified protection strategies in protocols combining the strengths and weaknesses of decentralized markets. Aave and Kelp served as a warning to the entire ecosystem, highlighting weak points and the need for improved security practices.
- Strengths: Such incidents encourage strengthening comprehensive security measures.
- Risks: Interconnected platforms may become vulnerable to future attacks, draining liquidity.
- Opportunities: Studying incidents acts as a catalyst for developing improved protection mechanisms.
- Threats: Without adequate follow-up measures, trust in decentralized solutions may be undermined for a long time.
Follow new insights in our telegram channel.
No need to invent complex schemes and look for the "grail". Use the Resonance platform tools.
Register via the link — get a bonus and start earning:
OKX | BingX | KuCoin.
Promo code TOPBLOG gives you a 10% discount on any Resonance tariff plan.
Recommended articles
