KelpDAO Hacker Launders $175M ETH Into BTC via THORChain
23 Apr 2026 · 12:44 UTC · CoinCentral RSS Feed · Original source
Read original at CoinCentral RSS Feed →
Summary
KelpDAO suffered a major security breach resulting in theft of $175M in ETH. The attacker swapped stolen ETH to Bitcoin via THORChain, processing $800M in volume to obscure fund origins and reduce recovery chances. The breach triggered bad debt concerns at Aave and broader DeFi risk concerns. Arbitrum froze part of the stolen ETH in recovery efforts. The rapid cross-chain swap demonstrates challenges in fund recovery when attackers leverage decentralized protocols for laundering, as conversion to Bitcoin makes stolen assets significantly harder to trace and recover compared to remaining on Ethereum.
Why it matters
The hack operates through interconnected mechanisms: (1) Direct exposure—protocols with KelpDAO integration face immediate risk; Aave specifically experiences bad debt; (2) Liquidity concerns—$175M in stolen funds creates temporary liquidity questions; THORChain route suggests conversion to untraceable BTC, complicating recovery; (3) Trust erosion—major security breaches historically trigger 5-20% corrections before stabilization; (4) Layer 2 sentiment—Arbitrum may see negative sentiment despite protocol integrity remaining intact. Key assumptions: no additional funds emerge, recovery efforts avoid systemic cascades, regulatory response remains measured. Primary uncertainties: contagion extent to Aave and other protocols, recovery feasibility and timeline, regulatory speed and severity. Altcoins show disproportionate impact due to direct DeFi exposure and liquidity dynamics. Bitcoin's safe-haven status limits downside despite broader risk-off flows. The cross-chain laundering mechanism particularly affects DeFi confidence as it demonstrates attacker sophistication in evading recovery.
Expected impact
The KelpDAO security breach and $175M ETH-to-BTC laundering via THORChain represents a significant negative catalyst for DeFi markets. The incident triggers immediate panic selling in altcoins, particularly DeFi tokens and Arbitrum-based assets, as investors reassess counterparty and smart contract risks. Direct implications for Aave and other protocols with KelpDAO exposure create bad debt events and potential cascading liquidations. Successful cross-chain laundering increases perceived security risks in DeFi, pushing capital toward safer assets. Regulatory investigations into THORChain may accelerate, adding uncertainty. Impact varies by timeframe: minutes-to-hours show panic selling and elevated volatility in affected altcoins; daily timeframes reveal sector rotation away from DeFi and depression of layer 2 tokens; weekly-to-monthly periods show stabilization as recovery efforts proceed, though lingering trust deficit affects adoption sentiment. Bitcoin maintains relative strength as a safe-haven asset despite mild downward pressure from broader risk-off sentiment. Altcoins, especially DeFi and layer 2 assets, face sustained headwinds as markets reassess systematic risks in decentralized finance infrastructure.