Aave Risk Manager Models $230M Bad Debt Scenarios
LlamaRisk modeled two bad debt scenarios from the $293M Kelp DAO exploit, with losses potentially concentrated on Ethereum mainnet or layer-2s. Aave’s TVL plunged, threatening a rsETH depeg.
Quick Take
Two scenarios estimate $123M or $230M in Aave bad debt.
Hackers stole 116,500 rsETH and borrowed wETH on Aave.
Liquidity crunch spurs $10B TVL decline across Aave protocol.
Kelp DAO paused contracts, blacklisted wallets, working on recovery.
Market Impact Analysis
BearishExploit led to significant bad debt risk for Aave, causing TVL drop and potential depeg of rsETH.
Speculation Analysis
Key Takeaways
- Two scenarios estimate $123.7M or $230.1M in Aave bad debt from the rsETH exploit.
- Hackers stole 116,500 rsETH worth $293M via Kelp DAO’s bridge and borrowed wETH on Aave.
- Aave TVL collapsed by nearly $10B post-exploit, threatening a rsETH depeg.
- Kelp DAO paused contracts, blacklisted wallets, and is coordinating recovery with stakeholders.
What Happened
Aave faces a potential bad debt crisis after a weekend exploit on Kelp DAO’s bridge. The exploit occurred on Saturday when two of three LayerZero bridge validators were compromised and a third hit by a DDoS, enabling a forged transfer message. Hackers minted 116,500 rsETH tokens worth $293 million and immediately deposited them as collateral on Aave V3 to borrow wrapped Ether. Kelp DAO paused contracts and blacklisted wallets, but the damage was done. Aave’s risk manager, LlamaRisk, released two remediation scenarios on Monday, outlining loss distribution strategies. The ultimate path depends on Kelp DAO’s decision, but the incident already triggered a massive liquidity exodus from Aave.
The Numbers
LlamaRisk’s modeling lays out stark choices. The first scenario, spreading losses across all rsETH holders, would cap Aave’s bad debt at $123.7 million but risks a 15% rsETH depeg. The alternative concentrates the shortfall on layer-2 networks, pushing bad debt to $230.1 million — a costlier but potentially cleaner resolution. Aave’s treasury holds $181 million, offering a partial buffer. Meanwhile, over 18,922 aWETH — approximately $43.7 million — has entered an unstaking cooldown as users flee. The protocol’s total value locked has plunged nearly $10 billion since the exploit.
Why It Happened
The root cause is a classic bridge vulnerability. Kelp DAO’s LayerZero bridge relied on a small set of validators; two were compromised, and a third was DDoS’d. This allowed the attacker to forge a transfer message and mint rsETH without depositing real ETH. Once minted, the rsETH was accepted as collateral on Aave, exposing the lending protocol to bad debt when the underlying asset became worthless. The incident underscores the fragility of cross-chain infrastructure: a single point of failure can ripple through DeFi, punishing protocols that accept wrapped assets without robust risk parameters.
Broader Impact
Beyond Aave, the exploit threatens the rsETH peg across Ethereum and layer-2s, potentially triggering liquidations in other lending markets. Kelp DAO’s response may set a template for future bridge-related failures. The incident also tests Aave’s Umbrella security model, which was designed to absorb such shocks. If the treasury proves insufficient, it could shake confidence in DeFi’s insurance mechanisms.
What to Watch Next
- Kelp DAO’s final decision on loss allocation and protocol unpause.
- rsETH price stability; a depeg would signal broader market stress.
- Aave governance proposals to cover the bad debt, including potential treasury mobilization.
This article is for informational purposes only and does not constitute financial advice.
Always late to trends?
Join for the latest news, insights & more.
Disclaimer: Bytewit is an independent media outlet that delivers news, research, and data.
© 2026 Bytewit. All Rights Reserved. This article is for informational purposes only.
