Aave Bleeds $6.6B After Kelp Hack; AAVE Token Falls

CRYPTO
Whalesbook Logo
AuthorKavya Nair|Published at:
Aave Bleeds $6.6B After Kelp Hack; AAVE Token Falls
Overview

Decentralized finance protocol Aave saw its total value locked (TVL) drop by $6.6 billion to nearly $20 billion, from $26.4 billion. The outflow occurred over the weekend after a Kelp protocol bridge exploit. Hackers used stolen liquid restaking tokens (rsETH) as collateral on Aave V3, triggering liquidations and withdrawals. The incident caused the AAVE token to fall 16% to $92. Aave's founder confirmed its smart contracts were secure, but the event highlighted risks in how DeFi protocols manage collateral from external sources.

Instant Stock Alerts on WhatsApp

Used by 10,000+ active investors

1

Add Stocks

Select the stocks you want to track in real time.

2

Get Alerts on WhatsApp

Receive instant updates directly to WhatsApp.

  • Quarterly Results
  • Concall Announcements
  • New Orders & Big Deals
  • Capex Announcements
  • Bulk Deals
  • And much more
Add StocksGet it on Google PlayDownload on the App Store

Exploit Triggers Massive Outflow

Aave, a major decentralized finance protocol, saw its total value locked (TVL) plummet by $6.6 billion, dropping to around $20 billion from $26.4 billion. This sharp decline followed an exploit on the Kelp protocol's bridge. Hackers used stolen liquid restaking tokens (rsETH) from Kelp as collateral on Aave's V3 platform. This action triggered a wave of liquidations and prompted depositors to withdraw funds, severely hitting Aave's liquidity. The incident has raised questions about the resilience of DeFi lending platforms and their risk management for newer digital assets.

How the Attack Unfolded

The core of the weekend's turmoil began with an exploit of Kelp's bridge, which allowed attackers to steal about 116,500 rsETH. These stolen tokens were then deposited on Aave's V3 as collateral to borrow wrapped ether (WETH). On-chain data shows these specific borrows reached approximately $196 million. The incident contributed to a wider impact across DeFi, affecting other lending protocols like Compound and Euler Finance, with total impacted positions estimated at $236 million. The AAVE token reacted sharply, falling 16% to $92, reflecting market concerns about the protocol's stability and its reserves.

Aave's Vulnerability Exposed

Aave's status as the largest DeFi lending protocol, with a significant portion of its loans concentrated on the Ethereum chain, made it a key target. Adding to this risk, wrapped ether (WETH) represents a dominant 39.49% of all loans. This meant the exploit directly targeted a crucial collateral type for Aave's operations. Although Aave's founder, Stani Kulechov, confirmed that Aave's smart contracts themselves were not compromised, the reliance on collateral derived from third-party bridges – which Aave does not control – proved to be a significant weakness. The protocol initially suggested its "Umbrella reserve" would cover any shortfall, but later adjusted its statement to "explore paths to offset the deficit," leading to uncertainty about the reserve's ability to fully cover losses.

DeFi's Interconnectedness Questioned

The event also sheds light on broader risks within DeFi's interconnected structure. Liquid restaking tokens like rsETH, attractive for their yield, were added as collateral by many DeFi protocols. However, risk models did not fully account for the possibility that the backing of these tokens could be compromised by an exploit on an external bridge. This incident reveals a gap in assessing risks for new digital assets, especially when their security relies on other, sometimes unaudited, infrastructure components. The failure point for rsETH was outside of Aave's direct control, indicating risks not fully factored into standard parameters. Aave, often seen as a backbone for DeFi, becomes a focal point for contagion when parts of its collateral ecosystem face external threats.

Looking Ahead

Market participants are now watching Aave closely for its strategy to address the deficit and the effectiveness of its reserve systems. The long-term impact on Aave's TVL and the AAVE token price will hinge on how quickly and transparently Aave resolves the situation. This incident serves as a clear warning to the wider DeFi industry about the risks of interconnected protocols and the urgent need for better risk modeling for collateral assets tied to external infrastructure. Analyst views on the AAVE token are divided; some see the price drop as a chance to buy, citing Aave's crucial role in DeFi. Others remain concerned about the unpriced risks in its collateral mix and the platform's central importance. Historically, while tokens can rebound after DeFi exploits, events that undermine confidence in a protocol's security and risk management can lead to extended underperformance if not handled effectively.

Get stock alerts instantly on WhatsApp

Quarterly results, bulk deals, concall updates and major announcements delivered in real time.

Add Stocks
Disclaimer:This content is for educational and informational purposes only and does not constitute investment, financial, or trading advice, nor a recommendation to buy or sell any securities. Readers should consult a SEBI-registered advisor before making investment decisions, as markets involve risk and past performance does not guarantee future results. The publisher and authors accept no liability for any losses. Some content may be AI-generated and may contain errors; accuracy and completeness are not guaranteed. Views expressed do not reflect the publication’s editorial stance.