Gate News message, April 21 — According to Dune, analysis of LayerZero OApps active over the past 90 days following the KelpDAO hack reveals significant security configuration gaps. Among approximately 2,665 independent OApp contracts, 47% employ 1-of-1 DVN (Decentralized Verifier Network) security—the lowest configuration tier—while 45% use 2-of-2 and roughly 5% adopt 3-of-3 or higher configurations.
KelpDAO’s rsETH token operates at the 1-of-1 security level, the same minimum tier that left it vulnerable during the recent exploit. The data highlights widespread reliance on single-validator architectures across the LayerZero ecosystem despite known security risks.
Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to
Disclaimer.
Related Articles
Curve Founder Calls for DeFi Safety Standards Amid Hacking Surge
Michael Egorov, founder of Curve Finance, highlighted the DeFi industry's vulnerabilities after a significant hack. He stressed the need for preventive measures, collaborative safety standards, and accountability to restore trust and ensure secure adoption in the sector.
CryptoFrontier20m ago
Arbitrum emergency freezes KelpDAO hacker’s 30,766 ETH
Arbitrum’s Security Committee announced on April 21 that it has taken emergency action to freeze 30,766 ETH on the Arbitrum One chain related to the KelpDAO hacker attack. With assistance from law enforcement agencies, the Security Committee confirmed the attacker’s identity and devised a technical plan to transfer the funds to an interim freeze wallet without affecting any other chain state or Arbitrum users.
MarketWhisper37m ago
ASTEROID Creator's Mother Says Social Accounts Hacked, Denies Posting Crypto-Related Content
A creator's mother reported that her social media accounts were hacked, resulting in unauthorized crypto-related posts. She clarified these do not represent her views.
GateNews41m ago
Kelp DAO refutes LayerZero criticism; Aave bad debt reaches up to $230 million
Kelp DAO issued a statement on April 21 rebutting LayerZero’s criticism of its 1/1 DVN configuration, pointing the root responsibility for the $292 million vulnerability in this incident to LayerZero’s infrastructure. Aave released an event impact assessment report: under a scenario where losses are evenly distributed, about $124 million; under a scenario where losses are concentrated on L2, they reach up to $230 million.
MarketWhisper1h ago
DefiLlama denies exaggerated claims about the metrics, saying that Aave data has been excluded from the circulating liquidity calculation
KelpDAO’s vulnerability caused Aave’s total value locked (TVL) to fall from $26.4 billion on April 18, 2026, to about $17 billion on April 21, and after DefiLlama founder 0xngmi officially responded on the X platform to accusations that its Aave TVL figures were inflated by circular liquidity, he said that the amount of borrowed tokens has been deducted from the TVL.
MarketWhisper2h ago
Claude Desktop Installation Reportedly Writes Backdoor File to Chromium-Based Browsers
The Claude Desktop application by Anthropic installs a backdoor file in Chromium-based browsers without user consent, posing serious security and privacy risks by potentially allowing attackers to control users' browsers.
GateNews4h ago
