Kelp, a liquid restaking protocol, was the sufferer of a cyber assault on Saturday, inflicting the platform to pause good contracts for its restaking token (rsETH), because it “investigates” the assault amid studies of tons of of thousands and thousands of {dollars} in losses.
“Earlier at present, we recognized suspicious cross-chain exercise involving rsETH. We’ve got paused rsETH contracts throughout mainnet and a number of other Layer-2s,” the Kelp platform stated in an X publish.
The attacker exploited the rsETH adapter bridge contract, the software program code that manages Kelp’s rsETH token, and drained the platform of about $293 million in funds, in line with blockchain safety agency Cyvers.
The attacker used a Twister Money crypto mixer-funded handle and has already transformed about $250 million of the stolen funds to Ether (ETH), the native cryptocurrency of the Ethereum layer-1 blockchain community, Cyvers informed Cointelegraph.
In response to the assault, decentralized finance (DeFi) platform Aave introduced it had frozen rsETH markets on Aave V3 and V4. At the least 9 crypto protocols had publicity to the token and have frozen exercise on their platforms in response, Cyvers stated.
“That is precisely the form of incident that highlights the dangers of composability in DeFi,” Deddy Lavid, CEO of Cyvers, informed Cointelegraph. Cointelegraph reached out to Kelp however didn’t get hold of a response by the point of publication.
The incident is the newest in a string of cybersecurity hacks and exploits of crypto platforms during the last a number of months, as crypto losses from hacks and scams totaled about $482 million in Q1 2026.
Associated: Pretend Ledger Stay app on Apple App Retailer drained $9.5M from victims: ZachXBT
Drift Protocol hacked for $280 million
Decentralized cryptocurrency alternate Drift Protocol additionally suffered an exploit in April, which drained the platform of about $280 million.
The Drift Protocol staff stated the assault took “months of deliberate preparation,” wherein the staff was infiltrated by suspected North Korean state-affiliated hackers.
In a autopsy replace, the Drift staff stated they met the attackers at a “main” crypto convention and collaborated with them for a number of months earlier than the attackers deployed malware on developer machines and compromised the platform.
Journal: DeFi’s billion-dollar secret: The insiders accountable for hacks