DeFi Suffers $13 Billion Loss in 48 Hours Following KelpDAO Breach

A massive exodus of capital is underway in the decentralized finance ecosystem, triggered by the recent exploit of the KelpDAO protocol over the weekend. Aave, a leading DeFi lending platform, has seen a staggering $8.45 billion withdrawal in deposits within the past 48 hours, contributing to a broader decline of $13.21 billion in total value locked across DeFi. The total value locked, which measures the combined dollar value of crypto assets deposited across DeFi protocols, has plummeted from $99.497 billion to $86.286 billion. Aave's TVL has also taken a hit, declining by $8.45 billion to $17.947 billion during the same period, according to data from DefiLlama. Protocol-level data reveals double-digit percentage drops across various platforms, including Euler, Sentora, and Aave, with the majority of losses concentrated in lending, restaking, and yield strategies tied to the affected collateral. The exploit, which involved a $292 million breach of Kelp's bridge, allowed attackers to utilize stolen rsETH, a liquid re-staking token commonly used in DeFi, as collateral to borrow funds on lending platforms. As these stolen tokens lacked legitimate collateral backing, borrowing against them created potential shortfalls for lenders, drawing parallels with deceiving a traditional bank by depositing fake fiat and taking out loans against it, ultimately leaving the lender with bad debt. In response, protocols have frozen affected markets, while panicked users have withdrawn funds, leading to a broad decline in total value locked. Token prices, however, have been less affected, with the AAVE token experiencing a 2.5% decline over 24 hours, and UNI and LINK seeing less than a 1% drop during the same period, according to CoinDesk market data. Peter Chung, head of research at Presto Research, noted that the incident highlights the risks inherent in cross-chain infrastructure, particularly in verification systems used by bridges. Preliminary analysis suggests that the issue may have originated in the verification layer rather than in the smart contracts themselves. Chung also pointed out that the episode demonstrates how interconnected DeFi protocols can transmit shocks beyond the initial point of failure, with withdrawal activity and market freezes extending to platforms without direct exposure to the exploit.