Aave estimates bad debt between 124 million and 230 million dollars following Kelp exploit
Aave service providers have published an incident report detailing the protocol’s exposure to the April 18 exploit of the Kelp DAO rsETH bridge. The report outlines two primary scenarios for bad debt, ranging from 123.7 million to 230.1 million dollars, depending on how Kelp DAO chooses to allocate
Aave service providers have published an incident report detailing the protocol’s exposure to the April 18 exploit of the Kelp DAO rsETH bridge. The report outlines two primary scenarios for bad debt, ranging from 123.7 million to 230.1 million dollars, depending on how Kelp DAO chooses to allocate losses across its liquid restaking token holders. Approximately 89,567 rsETH stolen from the bridge were deposited into Aave across seven attacker-controlled wallets, which were then used to borrow over 190 million dollars in WETH and 2.33 million dollars in wstETH. These positions currently maintain health factors just above the liquidation threshold.
The incident exposes the fragility of the trust assumptions inherent in cross-chain architectures and the systemic risks of using liquid restaking tokens as collateral. The exploit was made possible by a compromise of the LayerZero bridge configuration, where attackers targeted RPC nodes to forge data. Because Kelp utilised a 1-of-1 Decentralised Verifier Network configuration, the compromise of a single entity’s infrastructure was sufficient to validate the theft. This centralisation of verification power meant that the security of hundreds of millions of dollars in Aave’s liquidity pools was ultimately dependent on the operational security of a single external provider.
Further complicating the recovery is the uncertainty of the underlying asset’s value. Kelp recovered roughly 40,000 rsETH by freezing a subsequent drain attempt, but this represents only a fraction of the total claims. If Kelp socialises the loss across all chains, Aave’s Ethereum Core market faces a 91.8 million dollar shortfall. If the loss is isolated to Layer 2 networks, the haircut for rsETH on those chains could reach 73.54 per cent, concentrating the bad debt on Arbitrum, Base, and Mantle. In either case, the decision-making power rests with Kelp’s governance and oracle updates, leaving Aave as a passive recipient of the fallout.
The technical risk extends to Aave’s liquidation mechanics. With WETH reserves at 100 per cent utilisation, liquidators cannot withdraw the underlying asset and must instead receive aWETH receipts. This friction slows the liquidation process, creating a second-order risk where a drop in the price of Ether could trigger a cascade of unliquidatable bad debt. Service providers have recommended an immediate pause of the Umbrella safety module to prevent further withdrawals while the DAO attempts to negotiate a manual resolution.
This event serves as a reminder that when a protocol accepts external tokens as collateral, it inherits the entire trust profile of that token’s bridge and governance. True sovereignty is lost the moment a system relies on a 1-of-1 verification multisig or an external oracle to define its solvency.
---
Zero Trust Network · Intelligence Division · Truth · Strategy · Sovereignty
