LayerZero has admitted to a significant error in its handling of a $292 million exploit, acknowledging that it allowed its own verification network to secure high-value assets in a vulnerable configuration. Initially blaming Kelp DAO for the incident, LayerZero has now reversed its stance, stating it “owns” the decision that led to the hack attributed to North Korean attackers. The company clarified that while its protocol remained uncompromised, the exploit targeted its internal RPC infrastructure.
This admission has prompted major clients to reconsider their partnerships, with Kelp shifting its rsETH bridge to Chainlink and Solv Protocol relocating over $700 million in tokenized bitcoin infrastructure away from LayerZero. The fallout underscores the ongoing vulnerabilities in cross-chain bridges, which have long been a weak point in crypto infrastructure, and highlights the importance of robust security practices in decentralized finance.
Market professionals should note that LayerZero’s misstep could lead to increased scrutiny of security protocols in the sector, potentially reshaping client relationships and competitive dynamics among cross-chain service providers.
Source: coindesk.com