TechFlow News, April 20: According to CoinDesk, Kelp DAO will contest LayerZero’s explanation of the $290 million rsETH cross-chain bridge vulnerability, stating that the compromised single-validator configuration relied on LayerZero’s own infrastructure and that such a setup is part of LayerZero’s default integration—rather than a custom or noncompliant choice made by Kelp DAO.
The attacker stole approximately 116,500 rsETH by compromising the servers LayerZero used to verify cross-chain transactions and disrupting its fallback nodes. Kelp DAO stated that the incident affected only the LayerZero-based bridging layer, leaving its core liquidity re-staking contracts unharmed. LayerZero subsequently responded that it would cease signing messages for any applications using a single-validator configuration and would mandate secure migration.
