Who’s to Blame for How KelpDAO’s DVN Was Set Up? KelpDAO or LayerZero?

Summary

The video analyzes the largest DeFi hack of 2026 involving KelpDAO's rsETH, where attackers spoofed a transaction via a compromised LayerZero RPC node, minting 116,000 rsETH then borrowing real ETH from Aave. Speakers discuss the technical attack vector, the role of LayerZero's DVN architecture, and the systemic risks of bridges. Luca Netz defends LayerZero and its founder Brian Pellegrino's integrity.

• Attackers compromised a LayerZero RPC node to spoof a transaction on the origin chain.
• They minted 116,000 rsETH that never existed and used it to borrow real ETH from Aave at 90% LTV.
• The system 'acted as intended' but was tricked by bad information from the compromised node.
• The hack exploited the DVN setup and the high LTV of rsETH on Aave, creating contagion risk.
• Kain Warwick notes the liquidity available to withdraw from Aave dropped to near zero during the event.
• Luca Netz praises LayerZero founder Brian Pellegrino's integrity and the team's response.
• Discussion highlights the lack of circuit breakers to protect the broader ecosystem from bridge failures.
• The incident underscores the systemic risk of bridges and cross-chain messaging in DeFi.