Futures
Access hundreds of perpetual contracts
TradFi
Gold
One platform for global traditional assets
Options
Hot
Trade European-style vanilla options
Unified Account
Maximize your capital efficiency
Demo Trading
Introduction to Futures Trading
Learn the basics of futures trading
Futures Events
Join events to earn rewards
Demo Trading
Use virtual funds to practice risk-free trading
Launch
CandyDrop
Collect candies to earn airdrops
Launchpool
Quick staking, earn potential new tokens
HODLer Airdrop
Hold GT and get massive airdrops for free
Pre-IPOs
Unlock full access to global stock IPOs
Alpha Points
Trade on-chain assets and earn airdrops
Futures Points
Earn futures points and claim airdrop rewards
#ArbitrumFreezesKelpDAOHackerETH
Arbitrum Security Council Freezes $71M in ETH Linked to Kelp DAO Exploit
Arbitrum's Security Council executed an emergency freeze of 30,766 ETH worth approximately $71 million on April 20, 2026, moving funds linked to the Kelp DAO exploit into an intermediary wallet that can only be accessed through further Arbitrum governance action. The council acted on law enforcement's input regarding the exploiter's identity and executed the freeze within approximately 20 minutes via a system-level ArbOS transaction executed by nine of the 12 council members.
The Kelp DAO Exploit Context
The original exploit struck Kelp DAO's LayerZero-powered bridge on April 18, where attackers minted approximately $292 million worth of unbacked rsETH and drained over $200 million in real WETH from Aave before markets could freeze, leaving the lending protocol with hundreds of millions in bad debt. The freeze recovered roughly a quarter of the stolen funds before they could be fully bridged to Ethereum mainnet. However, the exploiter quickly moved the remaining approximately $175 million (75,701 ETH) in three transactions to fresh wallets on mainnet, with signs of laundering through THORChain and Umbra toward BTC.
Attribution and Investigation
Preliminary indicators point to North Korean hackers as the culprit, specifically the TraderTraitor hacking group known for targeting crypto assets. North Korean hackers working for Kim Jong Un's regime have become highly successful at stealing crypto, with over $2 billion stolen in 2025 alone and approximately $6 billion total since 2017.
Kelp DAO's Response
Kelp DAO acted quickly by pausing contracts and blacklisting wallets tied to the attacker, preventing an additional 40,000 rsETH worth about $95 million from being drained. LayerZero criticized Kelp DAO's use of a 1-of-1 decentralized verified network configuration, arguing that it created a single point of failure without independent verification. Kelp DAO, however, pointed out that the single-DVN setup is the configuration documented by LayerZero.
Aave's Position
The rsETH markets on Aave V3 and V4 have been frozen, with the asset stripped of borrowing power as a measure following the exploit. Aave is now dealing with $124M to $230M in bad debt from the incident. The Aave community is expected to discuss whether rsETH should be permanently delisted from all Aave markets once the situation stabilizes.
Decentralization vs Security Debate
The incident has sparked debates on decentralization versus security in Layer 2 networks. Arbitrum is a permissionless layer-2 network settled on Ethereum, and the Security Council's ability to freeze funds controlled by an outside address raises questions about how far emergency powers should extend, even when applied to state-sponsored thieves. The frozen funds can only be released through an Arbitrum governance vote, such as if the owner proves innocence, and the action had no impact on other users or applications on the network.
#Arbitrum #KelpDAO #DeFiSecurity
Arbitrum Security Council Freezes $71M in ETH Linked to Kelp DAO Exploit
Arbitrum's Security Council executed an emergency freeze of 30,766 ETH worth approximately $71 million on April 20, 2026, moving funds linked to the Kelp DAO exploit into an intermediary wallet that can only be accessed through further Arbitrum governance action. The council acted on law enforcement's input regarding the exploiter's identity and executed the freeze within approximately 20 minutes via a system-level ArbOS transaction executed by nine of the 12 council members.
The Kelp DAO Exploit Context
The original exploit struck Kelp DAO's LayerZero-powered bridge on April 18, where attackers minted approximately $292 million worth of unbacked rsETH and drained over $200 million in real WETH from Aave before markets could freeze, leaving the lending protocol with hundreds of millions in bad debt. The freeze recovered roughly a quarter of the stolen funds before they could be fully bridged to Ethereum mainnet. However, the exploiter quickly moved the remaining approximately $175 million (75,701 ETH) in three transactions to fresh wallets on mainnet, with signs of laundering through THORChain and Umbra toward BTC.
Attribution and Investigation
Preliminary indicators point to North Korean hackers as the culprit, specifically the TraderTraitor hacking group known for targeting crypto assets. North Korean hackers working for Kim Jong Un's regime have become highly successful at stealing crypto, with over $2 billion stolen in 2025 alone and approximately $6 billion total since 2017.
Kelp DAO's Response
Kelp DAO acted quickly by pausing contracts and blacklisting wallets tied to the attacker, preventing an additional 40,000 rsETH worth about $95 million from being drained. LayerZero criticized Kelp DAO's use of a 1-of-1 decentralized verified network configuration, arguing that it created a single point of failure without independent verification. Kelp DAO, however, pointed out that the single-DVN setup is the configuration documented by LayerZero.
Aave's Position
The rsETH markets on Aave V3 and V4 have been frozen, with the asset stripped of borrowing power as a measure following the exploit. Aave is now dealing with $124M to $230M in bad debt from the incident. The Aave community is expected to discuss whether rsETH should be permanently delisted from all Aave markets once the situation stabilizes.
Decentralization vs Security Debate
The incident has sparked debates on decentralization versus security in Layer 2 networks. Arbitrum is a permissionless layer-2 network settled on Ethereum, and the Security Council's ability to freeze funds controlled by an outside address raises questions about how far emergency powers should extend, even when applied to state-sponsored thieves. The frozen funds can only be released through an Arbitrum governance vote, such as if the owner proves innocence, and the action had no impact on other users or applications on the network.
#Arbitrum #KelpDAO #DeFiSecurity