#rseth

➤ Aave is considering significant changes to its collateral and listing standards following the rsETH bridge exploit, which led to potential bad debts of up to $230.1 million. ➤ The exploit highlighted risks associated with staked and restaked assets, particularly those relying on bridges and external services, prompting discussions on stricter dependency reviews and hard LTV caps. ➤ While Aave's core systems functioned as designed, the incident has accelerated governance discussions towards a new rulebook for asset listings, emphasizing bridge reviews and tighter limits on wrapped collateral.

➤ Aave is overhauling its asset listing standards following a $230 million exploit involving KelpDAO's restaked ether (rsETH), which was traced to a LayerZero bridge verification failure. ➤ The incident highlights a new class of DeFi risk beyond smart contract bugs, prompting Aave to assess bridges, oracles, custodians, and operational security. ➤ Aave is also implementing automated defenses to reduce collateral value to zero when risk thresholds are breached, aiming to prevent systemic losses in increasingly interconnected DeFi protocols.

➤ Kelp DAO has completed its rsETH recovery plan after a $293 million exploit linked to the Lazarus Group, restoring full functionality. ➤ The exploit resulted in significant bad debt on Aave's lending markets and a drop in its total value locked. ➤ Ongoing legal disputes over frozen assets and tensions between Kelp DAO and LayerZero persist, with Kelp DAO planning to migrate its infrastructure.

➤ Kelp DAO has successfully completed its recovery from a $293 million exploit by the Lazarus Group, restoring full ETH backing for its rsETH token. ➤ The exploit significantly impacted Aave, causing a substantial drop in its Total Value Locked (TVL), and highlighted broader concerns about bridge security and collateralization in restaking ecosystems. ➤ While operational recovery is complete, Kelp DAO faces the ongoing challenge of rebuilding user trust amidst increased scrutiny of DeFi security protocols.

➤ Aave has reinstated wrapped Ether (WETH) borrowing after lifting emergency restrictions imposed due to the Kelp DAO exploit. ➤ A legal dispute over 30,765 ETH frozen following the exploit, linked to North Korean hacking allegations, remains unresolved. ➤ Kelp DAO is discontinuing rsETH bridging on several networks, while Aave's total value locked has decreased significantly post-exploit.

➤ Arbitrum DAO approved the release of $70 million in ETH to compensate victims of the Kelp DAO exploit, but a U.S. court restraining order has created legal uncertainty. ➤ The restraining order, citing unpaid judgments against North Korea and attributing the hack to the Lazarus Group, claims the frozen ETH is DPRK property subject to seizure. ➤ Legal experts suggest that moving the ETH despite the notice could lead to contempt of court charges, creating a significant risk for those involved in the transfer.

➤ Kelp DAO is migrating its liquid restaking token, rsETH, to Chainlink's Cross-Chain Interoperability Protocol (CCIP) following a $292 million exploit on its previous LayerZero-based bridge. ➤ The exploit, which occurred on April 18, involved 116,500 rsETH and spread its impact into DeFi lending markets like Aave, raising concerns about bad debt. ➤ The migration aims to enhance cross-chain security and rebuild user confidence, though Kelp DAO and LayerZero remain in dispute over the cause of the exploit.

➤ Aave has liquidated the Kelp DAO attacker's rsETH collateral on Ethereum and Arbitrum as part of the DeFi United recovery plan to compensate affected users. ➤ Approximately $30.2 million in ETH was liquidated, but around 30,765 ETH remain frozen by Arbitrum DAO due to a restraining notice, creating legal uncertainty. ➤ The recovery hinges on securing further ETH commitments and a positive Arbitrum DAO governance vote, with Aave actively pursuing legal avenues to resolve the frozen assets.