Aave Leads 'DeFi United' Coalition to Stabilize Markets After $292 Million KelpDAO Exploit

Aave has spearheaded a coordinated recovery effort titled 'DeFi United' to mitigate the fallout from a $292 million exploit targeting KelpDAO. The initiative seeks to restore the backing of rsETH, a yield-bearing ether derivative, which became the primary vehicle for the attack. The crisis originated from a vulnerability in KelpDAO’s integration with LayerZero, which allowed an attacker to mint 116,500 unbacked rsETH tokens. The attacker subsequently deposited approximately 90,000 of these tokens into Aave as collateral to borrow $190 million in ETH and other assets across the Ethereum and Arbitrum networks. This collateral impairment triggered a liquidity crisis, leading to a run on deposits that saw Aave’s total value of assets plunge by $10 billion. According to Aave's incident report, the total shortfall is estimated to be more than 112,000 rsETH. To stabilize the system, several entities have pledged support. The Lido Labs Foundation proposed allocating up to 2,500 stETH, valued at approximately $5.7 million, while EtherFi and Aave founder Stani Kulechov each pledged 5,000 ETH to protect users and prevent the accumulation of bad debt. While the Arbitrum security council successfully froze roughly $71 million in ETH tied to the exploit, a significant portion of the stolen funds was bridged and swapped into Bitcoin via Thorchain. Consequently, the 'DeFi United' coalition is focusing on recapitalizing rsETH to normalize market conditions rather than attempting to claw back the remaining funds.