Consensys, Lubin Pledge 30K ETH for rsETH Recovery
After a $290M exploit of Kelp DAO's rsETH bridge, Consensys, Joe Lubin, and DeFi United commit up to 30,000 ETH to restore rsETH backing and stabilize markets. Aave faces $200M bad debt; attacker used rsETH as collateral. Circle buys AAVE tokens in support.
Quick Take
Consensys and Joe Lubin join DeFi United recovery effort with 30K ETH.
April 18 exploit drained $290M rsETH, disrupting DeFi protocols.
Aave froze rsETH markets as attacker borrowed $200M using stolen collateral.
Circle buys AAVE tokens; surge in April hacks totaling $623M.
Market Impact Analysis
BearishMajor exploit caused significant bad debt and instability; recovery efforts may mitigate but short-term disruption persists.
Speculation Analysis
Key Takeaways
- Consensys and Joe Lubin join DeFi United with up to 30,000 ETH to restore rsETH backing after a $290M bridge exploit.
- The April 18 exploit on Kelp DAO's LayerZero bridge drained 116,500 rsETH, causing $200M in bad debt on Aave.
- Aave froze rsETH markets; governance approvals pending for recovery plan structured to limit disruption.
- Circle's venture arm buys AAVE tokens in support, amid a surge in April hacks totaling $623M.
What Happened
On April 18, an exploit drained 116,500 rsETH — worth $290 million — from a LayerZero-based bridge operated by Kelp DAO. The attacker immediately used the stolen tokens as collateral on Aave to borrow assets, racking up nearly $200 million in bad debt. Aave froze rsETH markets, triggering disruptions across DeFi. In response, Consensys, Joe Lubin, and other DeFi United participants pledged up to 30,000 ETH to backstop rsETH. The recovery effort, still awaiting governance approvals, aims to inject immediate liquidity and stabilize affected protocols.
The Numbers
The 30,000 ETH commitment tops the recovery bid. The exploit itself ranks among April's largest, part of a $623 million monthly hack tally that includes Drift Protocol's $280 million social engineering attack. Aave absorbed $200 million in bad debt, while the attacker made off with 116,500 rsETH. Total DeFi losses over the past 90 days hit $729 million, with April alone accounting for 85% of that figure, per DefiLlama.
Why It Happened
LayerZero Labs traced the exploit to a configuration flaw in Kelp's bridge setup that relied on a single verification path for cross-chain messages. Without redundant checks, the attacker forged messages to transfer rsETH off-chain and redeem them on Ethereum. The incident spotlights the fragility of bridges that lack decentralized verification. Kelp’s over-reliance on one validation mechanism turned a minor misconfiguration into a nine-figure loss.
Broader Impact
The hack adds to a wave of DeFi exploits, fueling demands for stricter bridge audits and multi-signature controls. Aave's $200 million bad debt could pressure its liquidity if the recovery stalls, but Circle's decision to purchase AAVE tokens signals market confidence. The coordination among Consensys, Lubin, and major protocols shows a unified front, yet the event underscores how a single point of failure can cascade through DeFi.
What to Watch Next
- Governance votes on Aave and Kelp DAO proposals will dictate the speed of recovery.
- rsETH's peg stability and Aave's liquidity metrics amid the ongoing freeze.
- Potential security overhauls for LayerZero-based bridges in the wake of the incident.
This article is for informational purposes only and does not constitute financial advice.
Always late to trends?
Join for the latest news, insights & more.
Disclaimer: Bytewit is an independent media outlet that delivers news, research, and data.
© 2026 Bytewit. All Rights Reserved. This article is for informational purposes only.
