LayerZero Flags Lazarus Group Behind $292M KelpDAO Cross-Chain Hack
20 Apr 2026 · 13:31 UTC · CoinCentral RSS Feed · Original source
Read original at CoinCentral RSS Feed →
Summary
LayerZero identified a $292M exploit targeting KelpDAO's rsETH token through a cross-chain bridge vulnerability. The attack exploits a misconfiguration in LayerZero's Distributed Validator Network (DVN) setup. LayerZero attributes the breach to the Lazarus Group and identifies the DVN misconfiguration as the primary cause of the rsETH drain. The incident highlights critical security risks in cross-chain infrastructure and raises concerns about bridge reliability across the DeFi ecosystem.
Why it matters
Major security exploits erode trader confidence in affected protocols and related infrastructure. The $292M loss is material but unlikely systemic given broader market capitalization of DeFi sector. Bitcoin historically demonstrates resilience to altcoin-specific incidents, moving primarily on macroeconomic factors and institutional flows. Altcoins face disproportionate impact through immediate flight-to-safety dynamics and concentrated risk exposure in DeFi protocols. Near-term impact (minutes to hours) is most severe as panic selling dominates order flow. Medium-term impact (days to weeks) moderates as traders evaluate fundamental consequences and LayerZero remedial measures. The Lazarus Group attribution compounds negative sentiment by raising state-actor attack concerns, though fundamental impact remains localized. Key assumptions: no cascading exploits emerge, LayerZero implements security patches, broader DeFi ecosystem stability persists. Primary uncertainties include total affected parties, regulatory response timing, and whether incident signals broader infrastructure vulnerabilities versus isolated misconfiguration.
Expected impact
The $292M KelpDAO cross-chain exploit through LayerZero's DVN misconfiguration creates immediate negative market sentiment in DeFi and altcoin sectors. The breach triggers sharp selling pressure in affected protocols and bridge-related tokens due to security concerns and risk reassessment. Altcoins experience disproportionate downside as traders flee to safer assets, while Bitcoin shows relative resilience with modest negative pressure from broader risk-off sentiment. The alleged Lazarus Group attribution elevates geopolitical risk perceptions regarding state-sponsored attacks on crypto infrastructure. Market effects include panic liquidations in LayerZero ecosystem tokens, heightened scrutiny of cross-chain bridge security across all protocols, potential contagion concerns affecting other bridges, and reduced confidence in multi-chain token transfers. Impact gradually dissipates as market absorbs initial shock and evaluates systemic implications over days and weeks.