Aave Faces $123.7M–$230.1M Potential Loss After KelpDAO rsETH Bridge Exploit

Aave, one of the largest decentralized lending protocols, said the KelpDAO rsETH bridge exploit could leave it facing between $123.7 million and $230.1 million in bad debt, depending on how losses are ultimately allocated. In the days after the attack, Aave’s total value locked, or TVL, fell from about $26.4 billion to roughly $17.8 billion to $19.8 billion, according to DefiLlama snapshots and contemporaneous reporting, a decline of about a quarter to a third.

In an April 20 incident report, Aave said the lower figure, $123,708,727, reflects a scenario in which losses are socialized across all rsETH, while the higher figure, $230,113,582, assumes losses are isolated to Layer 2 rsETH. Those are modeled outcomes, not a finalized realized loss.

The immediate problem for Aave was that a bridge failure turned into a lending-market crisis. According to Aave’s report, an attacker obtained 116,500 rsETH — KelpDAO’s liquid restaked ether token, which represents ETH restaked through EigenLayer and bridged across multiple networks — and then deposited 89,567 rsETH on Aave as collateral. Against that collateral, the attacker borrowed about 82,650 WETH and 821 wstETH, draining out highly liquid ETH-denominated assets while the rsETH backing was in question.

Aave said in its report: “On 2026-04-18 at 17:35 UTC (Ethereum block 24,908,285), an attacker exploited Kelp’s LayerZero V2 Unichain to Ethereum rsETH route …”

According to LayerZero and blockchain analysis firm Chainalysis, the exploit relied on a forged cross-chain packet that was accepted because the route used a 1-of-1 decentralized verifier network, or DVN, configuration. In practical terms, that meant a single verifier was enough to approve a cross-chain message, creating a single point of failure. LayerZero said compromised RPC nodes and a DDoS-triggered failover to poisoned RPCs led the verifier to attest to a message even though there was no corresponding burn of rsETH on the source chain.

LayerZero said in an April 19 incident statement: “Tl;dr On April 18, 2026, KelpDAO was exploited for approximately $290M.” The 116,500 rsETH released in the exploit was widely valued at about $290 million to $294 million at the time.

Aave’s exposure stems from a deeper backing shortfall in the bridge. The protocol said the Ethereum adapter balance fell from 116,723 rsETH to about 223 rsETH immediately after the exploit. Kelp later recovered or withdrew 40,373 rsETH during emergency actions. But at the time of Aave’s report, total remote claims across Layer 2 networks stood at 152,577 rsETH against only 40,373 rsETH in the adapter balance. As Aave put it, the basic requirement should be that “rsETH locked in Ethereum adapter ≥ total rsETH minted across all remote chains.”

Aave began emergency actions at about 7 p.m. UTC on April 18. Its Protocol Guardian froze rsETH and wrapped rsETH across V3 deployments, disabled new supply and borrowing for those reserves, adjusted WETH interest-rate models, and later froze WETH on several markets, including Core, Prime, Arbitrum, Base, Mantle and Linea.

KelpDAO also moved quickly, according to incident summaries cited by Chainalysis and other reporting. The protocol paused rsETH contracts across Ethereum and multiple Layer 2 networks, blacklisted attacker addresses, and engaged security responders and auditors.

On April 21, the Arbitrum Security Council, which can take emergency action on the Arbitrum network, executed a freeze and transfer of 30,765.667501709008927568 ETH tied to the exploiter on Arbitrum One to an intermediary frozen wallet. Any release of those funds would require governance action.

The fallout spread beyond Aave. DefiLlama-tracked figures cited in reporting showed broader DeFi TVL falling by about $11 billion to $14 billion over roughly 48 hours after the incident, underscoring how quickly confidence can evaporate when a bridge failure contaminates lending markets and liquidity.

Preliminary attribution from LayerZero pointed to a state-backed actor, specifically North Korea’s Lazarus Group, also known as TraderTraitor. Chainalysis reported similar preliminary attribution. But that assessment remains vendor analysis, not confirmed law enforcement attribution.

For now, the final size of Aave’s hit depends on how recovered collateral is distributed and how the remaining rsETH shortfall is allocated. What is already clear is that a single bridge-verification failure was enough to cascade into one of DeFi’s largest lending and liquidity shocks this year.