Kelp DAO has suffered a staggering $292 million exploit, marking the largest DeFi hack of 2026, as an attacker drained 116,500 rsETH—18% of its circulating supply—from its LayerZero-powered bridge. The breach, which occurred on Saturday, has triggered emergency freezes across several protocols including Aave, SparkLend, and Fluid, as concerns mount over the backing of rsETH across more than 20 networks.
This incident raises significant implications for the broader DeFi landscape. The exploit has not only put Kelp DAO’s ability to meet redemptions into question but also pressured the peg of rsETH. Aave’s markets for rsETH were frozen within hours, reflecting the market’s reaction to potential bad debt. As panic redemptions could ripple through non-Ethereum deployments, the fallout may further destabilize the already vulnerable DeFi ecosystem.
Market professionals should closely monitor the situation, particularly the potential for cascading effects on liquidity and token valuations across affected platforms. The ability of Kelp to recover stolen funds and restore confidence in rsETH will be critical in determining the immediate future of this sector.
Source: coindesk.com