DeFi United Proposes Plan to Fix $300M Kelp DAO Exploit
A coalition called DeFi United unveiled a technical proposal to restore rsETH’s backing after a $300M exploit, aiming to re-collateralize the token and unwind harmful loan positions on Aave and Compound through coordinated governance actions.
Quick Take
116,500 rsETH minted without backing on April 18, spread across DeFi.
107K rsETH still in active loans; plan to recover ~13K ETH from Aave.
Proposal requires governance approval; aims to fully restore rsETH backing.
Market Impact Analysis
BullishCoordinated rescue plan could prevent cascading liquidations and restore confidence in DeFi lending markets.
Speculation Analysis
Key Takeaways
- 116,500 unbacked rsETH minted in a bridge exploit on April 18, creating a $300M hole.
- DeFi United proposes phased re-collateralization and controlled unwinding of bad loans on Aave.
- ~107K rsETH still active; plan targets recovery of 13,000 ETH from Aave liquidations.
- Governance approvals needed; full backing restoration possible if executed.
What Happened
On April 18, an attacker exploited a vulnerability in Kelp DAO’s rsETH bridge, forging a message to mint 116,500 tokens without backing. Those tokens were swiftly spread across DeFi, used as collateral on Aave and Compound, creating a $300 million hole. DeFi United, a coalition of blockchain projects and individuals, responded with a step-by-step proposal to restore rsETH’s peg and unwind the toxic loans. The plan, shared on Aave’s official X account, aims to re-collateralize rsETH while methodically closing attacker positions to avoid chaotic liquidations.
The Numbers
The exploit generated 116,500 unbacked rsETH, with 107,000 still locked in active lending positions across Aave and Compound. DeFi United’s proposal targets the recovery of roughly 13,000 ETH from Aave alone by liquidating the attacker’s loans. Additional ETH commitments have been secured to fully re-collateralize rsETH in phases, closing the $300M gap. If governance approves, the plan would methodically unwind risk without forced selloffs.
Why It Happened
The root cause was a bridge vulnerability. The attacker sent a forged cross-chain message that tricked the Ethereum contract into releasing rsETH as if a legitimate deposit had occurred. This highlights persistent bridge security flaws in DeFi. The absence of robust validation allowed an unauthorized mint, which then propagated risk across lending protocols. Without intervention, forced liquidations could have cascaded, damaging collateral values and user positions.
Broader Impact
If successful, the DeFi United rescue sets a precedent for coordinated industry responses to protocol exploits. It could restore confidence in liquid staking derivatives and lending markets, showing that structured bailouts can contain systemic risk. Aave’s central role in unwinding the loans also reinforces its status as critical DeFi infrastructure.
What to Watch Next
- Governance votes on DeFi United’s proposal across Aave and Kelp DAO.
- Execution of staged ETH injections and controlled loan liquidations.
- Market reaction to rsETH re-collateralization and potential price stabilization.
This article is for informational purposes only and does not constitute financial advice.
Always late to trends?
Join for the latest news, insights & more.
Disclaimer: Bytewit is an independent media outlet that delivers news, research, and data.
© 2026 Bytewit. All Rights Reserved. This article is for informational purposes only.
