Registration
 
All news
Top Stories
Editors' Picks
Crypto
Financial News
Currencies
Market Voices
Companies
Regulators
Central Banks
Eugene Komchuk
Eugene Komchuk

Kelp hack: Impact on Aave and systemic risks for DeFi

Kelp hack: Impact on Aave and systemic risks for DeFi
How Kelp was hacked

​The hack of the Kelp protocol became one of the largest incidents in DeFi in recent times. However, its consequences went far beyond a single project. The exploit, worth hundreds of millions of dollars, affected interconnected protocols and led to serious issues for Aave — one of the key players in the crypto market.

How Kelp was hacked

The attack on Kelp occurred on Saturday, when the attacker exploited a vulnerability in a cross-chain bridge responsible for transferring the rsETH token between different networks. The attacker managed to withdraw 116,500 rsETH — about 18% of the total circulating supply and roughly $300 million, according to The Block.

The Kelp team did not respond immediately: the first actions came approximately 46 minutes after the attack. The protocol’s contracts were urgently paused, which blocked further attempts to withdraw funds. This proved effective — two subsequent transactions attempting to withdraw another 40,000 rsETH, or around $100 million, were rejected.

After that, Kelp officially confirmed the incident and suspended rsETH operations on the Ethereum mainnet and several Layer-2 networks. At the same time, LayerZero, auditors, and external security experts joined the investigation.

What Kelp and rsETH are

So what is Kelp? It is a liquid restaking protocol. It allows users to deposit ETH or related assets and receive rsETH in return. This token ensures that capital is not locked: it can be used in other DeFi protocols while the underlying asset continues to generate yield within the restaking system.

At the time of the attack, around 630,000 rsETH were in circulation, and the token was deployed across more than 20 networks, including Ethereum, Arbitrum, Base, Linea, Blast, Mantle, and Scroll. This broad integration made the incident especially sensitive for the market: rsETH was used not only within Kelp but also across other protocols as collateral, liquidity, and a financial instrument.

This is not the first incident involving Kelp in the past 12 months. In April 2025, the protocol paused deposits and withdrawals after a bug in its fee contract caused excessive minting of rsETH. At that time, the team stated that user funds were not affected.

Impact on Aave

The consequences of this attack were far more significant and directly affected Aave — the largest DeFi lending protocol. The attacker used the stolen rsETH as collateral to borrow liquidity on Aave V3, primarily in the form of wrapped Ether (wETH). As a result, the platform accumulated around $195 million in so-called “bad debt” — funds that cannot be recovered through standard liquidation mechanisms.

As a result, users began actively withdrawing funds. According to DeFiLlama, Aave’s total value locked (TVL) dropped from approximately $26.4 billion to $17.7 billion over the weekend. Major players withdrew liquidity: for example, the MEXC exchange withdrew about $431 million, while Abraxas Capital withdrew around $392 million.

At the same time, the USDT and USDC stablecoin pools on Aave V3 reached 100% utilization. This means that funds are практически impossible to withdraw: as of Monday morning, only about $2,500 was available for withdrawal from the $2.87 billion USDT pool. The protocol froze rsETH markets, as well as certain wETH operations across multiple networks, to prevent further risk from spreading.

The domino effect in DeFi

The scale of the Kelp incident is directly tied to how DeFi is structured. The rsETH token was used across multiple services — as collateral, a liquidity source, and part of trading strategies. According to analysts, at least nine protocols had direct or indirect exposure to this asset and were forced to pause operations following the attack.

This situation highlights a core feature of DeFi — the interconnectedness of protocols. A single failure in infrastructure, in this case a cross-chain bridge, led to issues across multiple parts of the ecosystem: from liquidity to lending. This interdependence is what turns an isolated exploit into a systemic crisis.

In the end, the Kelp hack was not just an isolated incident, but a clear example of how quickly risk can spread across the entire DeFi ecosystem. The use of the same asset across multiple protocols increases capital efficiency, but also makes the market more vulnerable to cascading failures. Even a single exploit can trigger liquidity shortages, bad debt, and a loss of confidence across several major players.

This material may contain third-party opinions, none of the data and information on this webpage constitutes investment advice according to our Disclaimer. While we adhere to strict Editorial Integrity, this post may contain references to products from our partners.

Editor's Picks for You

Blockchain nation in crisis: How a power struggle split Liberland
  • By Pavlo Kot
  • 4 hours ago
Blockchain nation in crisis: How a power struggle split Liberland
Editors' Picks
Shifting priorities: Governments back mining as businesses turn to AI
  • By Eugene Komchuk
  • Yesterday
Shifting priorities: Governments back mining as businesses turn to AI
Editors' Picks
Intel's comeback: Apple, Trump and the AI bet
  • By Mikhail Vnuchkov
  • 18.06.2026
Intel's comeback: Apple, Trump and the AI bet
Editors' Picks
All Editors' Top Picks

Latest AAVE News

Aave rises 14.80% as Grayscale sees potential undervaluation: weekly outlook
  • By Ezequiel Gomes
  • Yesterday
Aave rises 14.80% as Grayscale sees potential undervaluation: weekly outlook
Crypto
#Forecast #AAVE
Aave falls 6.19% as total value locked drops sharply
  • By Sholanke Dele
  • Yesterday
Aave falls 6.19% as total value locked drops sharply
Crypto
#Forecast #AAVE
Grayscale sees AAVE fair value at $175 if RWA market grows
  • By Jose Antonio Gastelum
  • 18.06.2026
Grayscale sees AAVE fair value at $175 if RWA market grows
Crypto
#Crypto #RWA #AAVE
All AAVE News
  • Pavlo Kot
  • 4 hours ago
Blockchain nation in crisis: How a power struggle split Liberland
  • Eugene Komchuk
  • Yesterday
Shifting priorities: Governments back mining as businesses turn to AI
  • Mikhail Vnuchkov
  • 18.06.2026
Intel's comeback: Apple, Trump and the AI bet
  • Oleg Tkachenko
  • 17.06.2026
Bitcoin price prediction based on RSI: Is BTC poised for a new rally?
  • Anastasiia Chabaniuk
  • 16.06.2026
Toncoin becomes Gram: Why Durov restored token's original name
  • Daria Chernytska
  • 16 min ago
Combining Bitcoin with income real estate could disrupt $4 trillion market, Scott Melker notes
  • Eugene Komchuk
  • 21 min ago
Canada needs action from Bank of Canada to boost growth, James E. Thorne states
  • Yulia Slavina
  • 31 min ago
Asset price collapse may lead to large scale money printing, Quinten Francois warns
  • Yaroslav Dmytrenko
  • 31 min ago
Adam Back: Bitcoin development is robust and market rejects consensus overrides
  • Hlib Chabaniuk
  • 41 min ago
SPCX rises to $211 on strong trading, Scott Redler notes
Weekly Top Bonuses
up to $2,500
deposit bonus for all clients
CLAIM BONUS
Your capital is at risk.
Top News
  • Pavlo Kot
  • 4 hours ago
Blockchain nation in crisis: How a power struggle split Liberland
Blockchain nation in crisis: How a power struggle split Liberland
  • Andrey Mastykin
  • Yesterday
Iran tightens rules for Hormuz ship transit
Iran tightens rules for Hormuz ship transit
  • Hanna Syniavska
  • Yesterday
U.S.-Iran talks postponed as truce outlook dims
U.S.-Iran talks postponed as truce outlook dims
  • Olga Shendetskaya
  • Yesterday
Oil gains after new U.S.-Iran talks are called off
Oil gains after new U.S.-Iran talks are called off
  • Igor Krasulya
  • Yesterday
Goldman Sachs revises gold forecast as Fed stays hawkish
Goldman Sachs revises gold forecast as Fed stays hawkish
Live News
  • Anton Kharitonov
  • Now
Microsoft under pressure as technical picture remains weak
  • Anton Kharitonov
  • Now
Apple consolidates after AI rally as investors await new growth catalyst
  • Anton Kharitonov
  • Now
Bitcoin struggles for direction amid macroeconomic uncertainty
  • Anton Kharitonov
  • Now
WTI recovers after selloff as downside risks remain
  • Anton Kharitonov
  • Now
Natural gas maintains upward bias amid supply risks and seasonal demand
Who We Are
Business Solutions
For Users
TU News
Popular Sections
Disclosures
CONTACT US
Legal
We are in Social Media
© IAFT Ltd., 2010-2026 All rights to the website are owned by IAFT Ltd.,
Registration number - HE 336186
  • Risk disclosure:

    Information on the TradersUnion.com website is for informational purposes only and does not constitute any motive or suggestion to visitors to invest money. Moreover, we hereby warn you that trading on the Forex and CFD markets is always a high risk. According to the statistics, 75-89% of customers lose the funds invested and only 11-25% of traders earn a profit. Trading in futures and options carries substantial risk of loss and is not suitable for every investor.

    That is why you should only invest money that you are prepared — or can afford — to lose at such high risks. Tradersunion.com does not provide any financial services, including investment or financial advisory services. Also, the Traders Union is not a broker and does not get money for trading in the Forex or CFD markets. Our website only provides information on brokers and the markets and helps its users to select the best brokerage company based on detailed information and objective analysis of brokers.

  • Disclaimer:

    Traders Union (TradersUnion.com) shall not be liable for the consequences of trading decisions made by the Client and for the possible loss of his capital resulting from the use of this website and information published on it.

    Forex market, CFD and cryptocurrency trading involves high risks and is not suitable for everyone. Before investing money, you need to adequately assess the level of your expertise and be aware of the risks, particularly in the context of trading with leverage. The information on this website is not intended for distribution or use by any person in any country or jurisdiction, where such distribution or use would be in violation of the local law or regulation. Any payments by Traders Union (TradersUnion.com) to the users of our website shall be legally interpreted solely as an incentive on our part for the activity on the website in the form of a deduction of a part of the advertising income; they shall not be a subject of any claims of our users or our obligations, a subject of disputes, as well as cannot be considered in relation to the services provided to users by brokers, both in fact and in their completeness and volume. The administration of the website shall not be liable for the content of user comments and reviews about the companies and shall not verify whether the authors of the reviews are indeed real clients of a specific company. All reviews, both negative and positive are published on the website without verification of their reliability; only offensive reviews that call for violence or any kind of discrimination and also reviews published from one group of IP addresses are moderated and removed. The authors of the materials shall be fully liable for the accuracy, completeness and impartiality of any information in the articles and reviews, including in the context of their use or mention of any brand names or trademarks. All mentions of the names of companies and their brands in any materials on the website shall be made in the context of communication of socially important information to the people about their activities by independent journalists, who are the authors. All evaluations and indicators on the website express the subjective opinion of the authors of the reviews (articles) and shall not be viewed as accurate statements and be a subject of disputes and claims against Traders Union.

  • Disclosure of advertisers and revenues:

    All the services on the Tradersunion.com website are free for you to use. Our team spends thousands of hours per annum researching brokers and gathering information about them to help investors all over the world to choose reliable companies and to avoid fraudsters.

    Indeed, the curating, sourcing, and organization of this process requires substantial financial investment by Tradersunion.com, which the website earns in the form of advertising payments. There are two types of advertising services on the website — direct advertising or partner (broker) participation programs. However, no services purchased by our partners shall affect the recommendations on our website, or our opinions, or ratings. Our ratings are based on our objective rating criteria and methodology; and the results are always equally and fairly applied to each broker. The work of our content authors and research groups does not involve any interaction with our advertisers and they do not have access to data concerning the amount of advertising purchased. For over 10 years we consider our independence, absolute openness, and objectivity as our main priority. Please follow the links to each of our affiliated broker’s websites. This will help Tradersunion.com to continue to provide our services to you for free.

onepercentfortheplanet.org World Association of News Publishers https://gdpr.eu/ GDPR