coin-img-ETHETH-1.48%coin-img-BTCBTC-0.60%coin-img-ASTEROIDETHASTEROIDETH+59.60%coin-img-SOLSOL-0.49%coin-img-TOMTOM-31.50%coin-img-XRPXRP-0.85%coin-img-USDCUSDC+0.00%coin-img-BENZBENZ-78.72%coin-img-ETHETH-1.48%coin-img-BTCBTC-0.60%coin-img-ASTEROIDETHASTEROIDETH+59.60%coin-img-SOLSOL-0.49%coin-img-TOMTOM-31.50%coin-img-XRPXRP-0.85%coin-img-USDCUSDC+0.00%coin-img-BENZBENZ-78.72%coin-img-ETHETH-1.48%coin-img-BTCBTC-0.60%coin-img-ASTEROIDETHASTEROIDETH+59.60%coin-img-SOLSOL-0.49%coin-img-TOMTOM-31.50%coin-img-XRPXRP-0.85%coin-img-USDCUSDC+0.00%coin-img-BENZBENZ-78.72%coin-img-ETHETH-1.48%coin-img-BTCBTC-0.60%coin-img-ASTEROIDETHASTEROIDETH+59.60%coin-img-SOLSOL-0.49%coin-img-TOMTOM-31.50%coin-img-XRPXRP-0.85%coin-img-USDCUSDC+0.00%coin-img-BENZBENZ-78.72%

LayerZero: KelpDAO Hit by Exploit, About $290M Lost; Initial Signs Point to North Korea's Lazarus Group

LayerZero said KelpDAO was exploited on April 18, 2026, with estimated losses of about $290 million. The incident is preliminarily attributed to the DPRK-linked Lazarus Group (TraderTraitor). According to LayerZero, the attacker poisoned downstream RPC endpoints used by the DVN. A concurrent DDoS campaign triggered failover, leading the DVN to validate transactions that never occurred. LayerZero said no protocol flaws or key compromises were involved. The root cause was KelpDAO's 1/1 DVN configuration, which created a single point of failure. The impact was contained to rsETH, with no broader spillover reported. Affected RPCs have been replaced, and the LayerZero Labs DVN is now back online.
Selected
STG
STG-4.15%
Disclaimer: The content above is only the author's opinion and does not represent BingX’s stance. It shall not be construed as investment advice from BingX. For details, refer to the Terms and Conditions.