{"id":73303,"date":"2026-04-19T06:37:27","date_gmt":"2026-04-18T23:37:27","guid":{"rendered":"https:\/\/hbbgroup.net\/kelp-restaking-platform-exploited-293m-drained-in-attack\/"},"modified":"2026-04-19T06:37:27","modified_gmt":"2026-04-18T23:37:27","slug":"kelp-restaking-platform-exploited-293m-drained-in-attack","status":"publish","type":"post","link":"https:\/\/hbbgroup.net\/vi\/kelp-restaking-platform-exploited-293m-drained-in-attack\/","title":{"rendered":"Kelp restaking platform exploited, $293M drained in attack"},"content":{"rendered":"
\n

Kelp, a liquid restaking protocol, was the victim of a cyber attack on Saturday, causing the platform to pause smart contracts for its restaking token (rsETH), as it \u201cinvestigates\u201d the attack amid reports of hundreds of millions of dollars in losses.<\/p>\n

\u201cEarlier today, we identified suspicious cross-chain activity involving rsETH. We have paused rsETH contracts across mainnet and several Layer-2s,\u201d the Kelp platform said<\/a> in an X post.<\/p>\n

The attacker exploited the rsETH adapter bridge contract, the software code that manages Kelp\u2019s rsETH token, and drained the platform of about $293 million in funds, according<\/a> to blockchain security firm Cyvers.<\/p>\n

\"Cybercrime,
Source: <\/em>Cyvers<\/em><\/a><\/figcaption><\/figure>\n

The attacker used a Tornado Cash crypto mixer-funded address and has already converted about $250 million of the stolen funds to Ether (ETH<\/a>), the native cryptocurrency of the Ethereum layer-1 blockchain network, Cyvers told Cointelegraph.<\/p>\n

In response to the attack, decentralized finance (DeFi) platform Aave announced it had frozen<\/a> rsETH markets on Aave V3 and V4. At least nine crypto protocols had exposure to the token and have frozen activity on their platforms in response, Cyvers said.<\/p>\n

\"Cybercrime,
Source: <\/em>Aave<\/em><\/a><\/figcaption><\/figure>\n

\u201cThis is exactly the kind of incident that highlights the risks of composability in DeFi,\u201d Deddy Lavid, CEO of Cyvers, told Cointelegraph. Cointelegraph reached out to Kelp but did not obtain a response by the time of publication.\u00a0<\/p>\n

The incident is the latest in a string of cybersecurity hacks and exploits<\/a> of crypto platforms over the last several months, as crypto losses from hacks and scams totaled about $482 million<\/a> in Q1 2026.<\/p>\n

Related: <\/strong><\/em>Fake Ledger Live app on Apple App Store drained $9.5M from victims: ZachXBT<\/strong><\/em><\/a><\/p>\n

Drift Protocol hacked for $280 million<\/h2>\n

Decentralized cryptocurrency exchange Drift Protocol also suffered an exploit<\/a> in April, which drained the platform of about $280 million<\/a>.<\/p>\n

The Drift Protocol team said the attack took \u201cmonths of deliberate preparation<\/a>,\u201d in which the team was infiltrated by suspected North Korean state-affiliated hackers<\/a>.<\/p>\n

In a post-mortem update<\/a>, the Drift team said they met the attackers at a \u201cmajor\u201d crypto conference and collaborated with them for several months before the attackers deployed malware on developer machines and compromised the platform.\u00a0<\/p>\n

Magazine: <\/strong><\/em>DeFi\u2019s billion-dollar secret: The insiders responsible for hacks<\/strong><\/em><\/a><\/p>\n