News
22 Apr 2026, 11:04
Sui-Based Volo Protocol Hit by $3.5M Exploit, Freezes Vaults to Contain Damage

Volo Protocol, a liquid staking platform built on the Sui network, reported a security breach that led to the loss of approximately $3.5 million from its vaults, according to an official update shared by the team. The exploit impacted three vaults holding assets in WBTC, XAUm, and USDC. Recovery Efforts Intensify In an official update, the protocol said it detected the attack and responded immediately by notifying the Sui Foundation and other ecosystem partners, while also freezing the affected vaults to prevent further losses. As part of its control measures, all vaults have been temporarily frozen pending a full investigation and remediation process. Volo stated that the vulnerability was isolated to the three compromised vaults and confirmed that the remaining vaults, which account for around $28 million in total value locked, are not affected and remain secure with no shared attack vector. The team also said it is working with on-chain investigators and partners to recover the stolen funds and will release a detailed post-mortem once the investigation is complete. In subsequent updates, Volo reported freezing roughly $500,000 worth of assets linked to the exploit. In a separate development, the protocol said it had successfully blocked an attacker’s attempt to bridge 19.6 WBTC out of the hacker’s control. Volo added that it is coordinating with ecosystem participants to determine the appropriate process to return the intercepted assets. The protocol stated it is prepared to absorb the financial loss and aims to avoid passing the impact on to users. “We are in damage control mode now, but once that’s done, we will work out a remediation plan, and a full breakdown will be shared shortly.” April DeFi Exploit Wave A series of major exploits hit DeFi platforms in April. For instance, attackers drained about $285 million from the Solana-based Drift Protocol in roughly 12 minutes, and most of the funds were bridged to Ethereum shortly after. On-chain activity linked to the attack had begun as early as March 11. In a separate incident, NEAR protocol’s Rhea Finance lost an estimated $7.6 million after an oracle manipulation exploit. Meanwhile, KelpDAO suffered the largest DeFi hack of the year, with attackers stealing around $292 million from its cross-chain bridge built on LayerZero Labs infrastructure. The post Sui-Based Volo Protocol Hit by $3.5M Exploit, Freezes Vaults to Contain Damage appeared first on CryptoPotato .
22 Apr 2026, 10:11
KelpDAO hack triggers $211 million BTC purchase spike

🚨 $211 million in BTC was purchased after the KelpDAO hack. Attackers used ThorChain to rapidly convert stolen assets to $BTC. Continue Reading: KelpDAO hack triggers $211 million BTC purchase spike The post KelpDAO hack triggers $211 million BTC purchase spike appeared first on COINTURK NEWS .
22 Apr 2026, 09:46
RUNE jumps 19% as KelpDAO exploit funds flow through THORChain

The price of RUNE cryptocurrency surged sharply over the past 24 hours, climbing 19.1% to trade at $0.505, as an unusual spike in network activity pushed THORChain into the spotlight. The rally stands out against a broader crypto market that gained just 2.47% in the same period, with Bitcoin itself rising 2.53%. This clear outperformance points to a strong, asset-specific catalyst rather than a general market move. At the centre of the surge is a large-scale laundering operation tied to the KelpDAO exploit, which has significantly increased THORChain’s on-chain activity. KelpDAO exploit-driven activity fuels THORChain volume surge On-chain data shared by Specter shows that funds stolen from the KelpDAO exploit were rapidly moved through THORChain, with estimates suggesting between $80 million and $176 million worth of assets were processed. The exploit itself is estimated at roughly $290 million, making it one of the largest decentralised finance breaches in recent months. According to Spectre, the attacker (linked to the North Korean hacking group TraderTraitor) began moving funds just hours after the Arbitrum Council froze 30,766 ETH , valued at approximately $71 million. The remaining funds were split across three wallets holding roughly 25,000 ETH, 25,700 ETH, and another 25,000 ETH. One of these wallets quickly initiated laundering, reducing its balance to about 3,800 ETH, or around $8 million. The laundering process relied heavily on THORChain, with nearly 99% of the funds routed through the protocol and bridged into Bitcoin. The process involved more than 400 addresses and even mixed funds with proceeds from earlier incidents, including the BTC Turk and Bybit hacks. This surge in activity pushed THORChain’s daily transaction volume above $211 million on April 21, representing more than a tenfold increase over its 30-day average. Interestingly, the trading volume has continued to soar, with today's trading volume pushing above $680 million, a 1,938% increase in a single day. The spike in usage has translated directly into protocol revenue, with fees estimated at around $189,000 during the period. Utility spike meets technical breakout The sudden increase in usage has had a direct impact on RUNE’s price action. Unlike speculative rallies driven by sentiment, this move coincided with a measurable rise in network demand. At the same time, technical conditions amplified the upward move. RUNE broke above key short-term moving averages, including its 7-day and 30-day levels near $0.426 and $0.406. Daily exponential moving averages also show a bullish alignment, with the price trading above the 10, 20, 50, and 100-day EMAs. Momentum indicators confirm the strength of the move, with the MACD histogram turning positive, signaling increasing upward momentum. However, not all indicators point in the same direction. Out of 23 tracked technical indicators , 11 suggest bullish conditions, 8 point lower, and 4 remain neutral. This split highlights a market that is trending higher but showing signs of strain. Oscillators in particular are leaning bearish, with the Relative Strength Index (RSI), which currently sits at 73.03 on the daily chart, firmly in overbought territory. Interestingly, the weekly RSI tells a different story. At 33.59, it still reflects oversold conditions, suggesting that despite the recent rally, the asset remains in a broader recovery phase after a prolonged decline. THORChain (RUNE) price forecast In the near term, price action will likely depend on whether the current surge in activity can be sustained. The first key level to watch is support at $0.485. Holding above this level would maintain the current bullish structure. A drop below $0.462, however, would signal weakening momentum and open the door for a deeper pullback. The major downside level sits at $0.4125. A break below this point would invalidate the recent breakout and could lead to further losses. On the upside, resistance is clearly defined at $0.6129. A confirmed close above this level would indicate continuation and could push the price toward the next target at $0.6873. Beyond technical levels, traders should also watch the upcoming developments within the THORChain ecosystem, especially the planned integration of Monero, scheduled for May 10, which could introduce new demand for privacy-focused swaps. For now, the price remains supported by a sharp but unusual increase in network activity. But whether that support holds will depend on how the market reacts once the current flow of funds subsides. The post RUNE jumps 19% as KelpDAO exploit funds flow through THORChain appeared first on Invezz
22 Apr 2026, 09:25
Traders don’t see Kelp socializing losses after $292 million exploit

Polymarket prices low odds of a system-wide redistribution, as the protocol weighs how to handle an undercollateralized rsETH supply
22 Apr 2026, 08:55
Aave Sees $15.1B Outflow in Three Days: rsETH Exploit Sparks DeFi Shakeup

BitcoinWorld Aave Sees $15.1B Outflow in Three Days: rsETH Exploit Sparks DeFi Shakeup Aave sees $15.1B outflow in three days after an exploit involving rsETH, reducing total deposits by roughly one-third. The DeFi lending protocol’s deposits fell from $48.5 billion to $30.7 billion, according to EmberCN. This sudden shift highlights vulnerabilities in decentralized finance and triggers significant capital movement across major platforms. Aave Outflow: The rsETH Exploit Trigger The Aave outflow began after an exploit targeted the rsETH token. This incident forced the protocol to pause certain operations. EmberCN reported the $15.1 billion decline over a 72-hour window. Consequently, Aave’s total value locked (TVL) dropped sharply. Investors moved funds quickly to safer alternatives. This event underscores the risks inherent in DeFi lending protocols. Smart contract exploits remain a primary concern. Aave’s response included freezing affected markets. However, the damage to user confidence was immediate. Impact on Aave’s Ecosystem Aave’s total deposits now stand at $30.7 billion. This represents a 36.7% reduction from pre-exploit levels. The platform’s native token, AAVE, experienced price volatility. Traders reacted to the news with caution. Deposits fell from $48.5B to $30.7B rsETH exploit caused the rapid withdrawal Market cap of AAVE token dropped 8% Despite the outflow, Aave remains one of the largest DeFi protocols. Its liquidity pools still hold significant assets. Yet, the event raises questions about security audits and insurance mechanisms. SparkLend TVL Surges Amid Aave Outflow While Aave saw outflows, SparkLend’s total value locked (TVL) grew by $1.3 billion. It rose from $1.9 billion to $3.2 billion during the same period. This influx suggests capital rotation within the DeFi ecosystem. Large-scale investors, including Justin Sun, reportedly moved funds to SparkLend. SparkLend is a DeFi lending protocol built on the Spark ecosystem. Its rapid growth reflects demand for alternatives after the Aave exploit. The platform offers similar services but with different risk parameters. Investors seek diversification and enhanced security features. Why Investors Chose SparkLend SparkLend’s TVL increase demonstrates a flight to perceived safety. The protocol’s architecture includes additional safeguards. Moreover, its integration with other DeFi platforms provides liquidity advantages. Protocol TVL Before TVL After Change Aave $48.5B $30.7B -$15.1B SparkLend $1.9B $3.2B +$1.3B Morpho $11.7B $10.2B -$1.5B Justin Sun’s involvement adds credibility to SparkLend’s growth. His large-scale deposits signal confidence. Other whales followed suit, accelerating the trend. Morpho Deposits Decline in Parallel Morpho (MORPHO) also experienced a $1.5 billion decrease in total deposits. It fell from $11.7 billion to $10.2 billion. This decline, though smaller than Aave’s, shows broader market unease. Morpho is a DeFi lending protocol known for its efficiency. Yet, the rsETH exploit created a ripple effect across the sector. Investors are reassessing risk exposure. Morpho’s deposits dropped by 12.8%. This is less severe than Aave’s 36.7% decline. However, it still indicates a cautious sentiment. DeFi Market Trends Post-Exploit The rsETH exploit triggered a reassessment of DeFi security. Protocols now face pressure to enhance auditing processes. Users demand faster response mechanisms. Additionally, insurance products gain traction as risk mitigation tools. Morpho’s unique architecture may limit further outflows. Its peer-to-peer lending model offers competitive rates. Yet, trust remains fragile in the aftermath of major exploits. DeFi Lending Protocol Vulnerabilities Exposed The Aave outflow highlights systemic vulnerabilities in DeFi lending protocols. Smart contract bugs, oracle manipulation, and flash loan attacks are recurring threats. The rsETH exploit exploited a specific vulnerability. This incident follows a pattern of high-profile hacks in 2024 and 2025. Decentralized finance relies on code transparency. However, code is not infallible. The industry must adopt better security practices. These include formal verification, bug bounties, and real-time monitoring. Expert Insights on DeFi Security Security experts recommend multiple layers of protection. Multi-signature wallets and time-locks can prevent rapid fund drains. Additionally, cross-chain bridges need rigorous testing. The rsETH exploit involved a bridge vulnerability. “DeFi protocols must prioritize security over speed,” says a blockchain security analyst. “The Aave outflow is a wake-up call.” This sentiment echoes across the community. Investors now scrutinize audit reports more carefully. Future of DeFi After Major Outflows The Aave outflow reshapes the DeFi landscape. Protocols must rebuild trust through transparency and resilience. SparkLend’s gain shows that capital seeks safe havens. However, no protocol is immune to risk. Regulatory developments also influence DeFi’s future. Governments worldwide are drafting frameworks for digital assets. These regulations could mandate security standards. Compliance may become a competitive advantage. Innovation continues despite setbacks. New protocols emerge with improved designs. The market will likely consolidate around robust platforms. Aave’s experience will inform future security protocols. Conclusion Aave sees $15.1B outflow in three days due to an rsETH exploit, marking a pivotal moment for DeFi. Deposits dropped to $30.7 billion while SparkLend gained $1.3 billion. Morpho also lost $1.5 billion. The event underscores the importance of security in DeFi lending protocols. Investors now demand stronger safeguards. The industry must adapt to prevent future incidents. Trust, once broken, takes time to rebuild. FAQs Q1: What caused the Aave outflow? The Aave outflow was triggered by an exploit involving the rsETH token, leading to a $15.1 billion withdrawal over three days. Q2: How much did Aave’s deposits drop? Aave’s total deposits fell from $48.5 billion to $30.7 billion, a decline of roughly one-third. Q3: Which protocol gained from the Aave outflow? SparkLend saw its TVL grow by $1.3 billion, rising from $1.9 billion to $3.2 billion, as investors moved funds. Q4: Did Morpho also experience outflows? Yes, Morpho’s total deposits decreased by $1.5 billion, from $11.7 billion to $10.2 billion, during the same period. Q5: Is Aave still a major DeFi protocol? Yes, despite the outflow, Aave remains one of the largest DeFi lending protocols with $30.7 billion in deposits. This post Aave Sees $15.1B Outflow in Three Days: rsETH Exploit Sparks DeFi Shakeup first appeared on BitcoinWorld .
22 Apr 2026, 08:30
Sui-based voLO protocol hacked, $3.5 million lost from vaults

🚨 Sui-based $VOLO protocol lost $3.5 million from three vaults. Attackers targeted vaults holding WBTC, XAUm, and USDC, freezing only $500,000 so far. Continue Reading: Sui-based voLO protocol hacked, $3.5 million lost from vaults The post Sui-based voLO protocol hacked, $3.5 million lost from vaults appeared first on COINTURK NEWS .













































