Aave Faces Potential $230 Million Loss Following Kelp DAO Bridge Exploit

Aave is facing potential losses of up to $230 million following a sophisticated exploit of the Kelp DAO and LayerZero bridge. The breach involved the manipulation of rsETH, a liquid restaking token, allowing an attacker to create unbacked assets and use them as collateral to borrow approximately $190 million in ETH and other assets across Ethereum and Arbitrum. The exploit occurred when an attacker forged transfer messages, tricking the bridge into issuing tokens on one chain without the corresponding assets being locked on the sending chain. This flaw in cross-chain verification allowed the attacker to deposit 89,567 rsETH into Aave, leaving the protocol exposed to severely impaired collateral. Aave Labs and LlamaRisk indicate that the final loss depends on Kelp DAO's recovery strategy. If losses are distributed among all rsETH holders, Aave faces an estimated $124 million in bad debt due to a projected 15% depeg. However, if losses are isolated to Layer 2 networks like Arbitrum and Mantle, the bad debt could climb to $230 million. The incident sparked immediate volatility and a loss of confidence, leading users to withdraw roughly $6 billion in total value locked (TVL) from Aave. In response, Aave has frozen rsETH markets, set loan-to-value ratios to zero, and halted new borrowing against the asset to contain further risk. While the Aave DAO treasury holds approximately $181 million, the ultimate resolution remains uncertain as Kelp DAO has yet to finalize its loss allocation plan. The event highlights the systemic risks associated with interconnected DeFi infrastructure and the vulnerabilities of cross-chain messaging layers.