Aave Liquidity Crunch: $300M Borrowed After KelpDAO Exploit
A $300M borrowing spike on Aave follows the KelpDAO exploit as stablecoin pools hit 100% utilization, forcing users to take loans against USDT to access liquidity. The incident highlights DeFi fragmented liquidity risks.
Quick Take
KelpDAO bridge exploit minted 116,500 unbacked rsETH worth $292M.
Attacker deposited fake rsETH into Aave to borrow real ETH/wETH.
Aave froze rsETH markets, causing stablecoin withdrawals to max out.
Users borrowed $300M against USDT at a loss just to exit.
Market Impact Analysis
BearishExploit and resulting liquidity crunch undermine confidence in Aave's stablecoin markets and rsETH, potentially causing sell pressure and reduced deposits.
Speculation Analysis
Key Takeaways
- More than $300 million in loans were taken against USDT collateral on Aave within 24 hours as users resorted to costly borrowing to access frozen deposits.
- An attacker exploited KelpDAO’s bridge to mint 116,500 unbacked rsETH tokens worth $292 million, then used them to borrow real ETH from Aave.
- Aave’s freeze of rsETH markets triggered a liquidity crisis, with stablecoin pools reaching full utilization and blocking withdrawals.
- The incident exposes how a single DeFi exploit can cascade across protocols, forcing depositors to take losses just to exit positions.
What Happened
Aave saw a frantic $300 million borrowing spike against USDT deposits in the first day after the KelpDAO exploit, but this wasn’t a bullish signal of demand. With stablecoin pools maxed out and withdrawals impossible, users took loans against their own tethers at a net loss just to get liquidity. The scramble began on April 18 when an attacker manipulated KelpDAO’s bridge to mint 116,500 unbacked rsETH tokens, worth roughly $292 million. Those tokens were immediately deposited into Aave as collateral to borrow real ETH and wETH. Aave froze rsETH markets on V3 and V4 within hours, but the damage was done: depositors panicked, draining stablecoin pools to 100% utilization and trapping anyone who didn’t exit fast enough.
The Numbers
Data from Chaos Labs highlights the scale of the dislocation. Within a day, $300 million in additional USDT-collateralized loans flooded the platform—a credit expansion driven by desperation, not opportunity. The pools for USDT, USDC, and DAI all hit full capacity, meaning lenders couldn’t redeem their deposits. The attacker’s 116,500 rsETH represented 18% of the token’s circulating supply at the time, a glaring over-issuance that should have been impossible. Aave’s swift market freeze prevented deeper losses on rsETH loans but locked the stablecoin exits, creating a secondary liquidity squeeze. The borrowing rate for USDT spiked as users competed to take out loans at any cost.
Why It Happened
The cascade traces back to the interlocking nature of DeFi. KelpDAO’s rsETH, a liquid restaking token, had become widely used as collateral across lending protocols. By exploiting a bridge vulnerability, the attacker injected fake rsETH into Aave—free collateral to borrow real assets. Aave’s automated risk controls correctly froze the tainted markets, but that action severed the exit path for stablecoin lenders. Because lending pools rely on a constant balance of deposits and withdrawals, a sudden utilization spike leaves no capacity for redemptions. Users who wanted out had to borrow against their own USDT, paying interest just to sidestep the frozen pools. It’s a stark reminder that liquidity assumptions in DeFi can evaporate in an instant when a single piece of the puzzle breaks.
Broader Impact
The event underscores a systemic fragility in DeFi’s liquidity infrastructure. Liquid staking derivatives and restaking tokens are deepening their grip as collateral, yet their risk models often overlook bridge failures or counterparty exploits. Aave’s stablecoin markets—supposedly the safest part of the protocol—became illiquid after a completely unrelated exploit. This could prompt a re-evaluation of reserve factors and collateral haircuts for receipt tokens. More immediately, it may drive users away from max-out prone pools, shifting behavior toward more flexible yield strategies or even back to centralized options.
What to Watch Next
- Monitor Aave’s governance forum for proposals to adjust stablecoin pool parameters or inject emergency liquidity.
- Track KelpDAO’s response and whether rsETH remains viable collateral; any depegging could trigger further liquidations.
- Watch for deposit outflows from Aave and similar protocols as risk-averse users seek safer havens.
This article is for informational purposes only and does not constitute financial advice.
Always late to trends?
Join for the latest news, insights & more.
Disclaimer: Bytewit is an independent media outlet that delivers news, research, and data.
© 2026 Bytewit. All Rights Reserved. This article is for informational purposes only.
