hodler

1 May 2026, 12:35

Arbitrum Governance Unlocks $71M in ETH for Urgent Kelp DAO Recovery After Hack

BitcoinWorld Arbitrum Governance Unlocks $71M in ETH for Urgent Kelp DAO Recovery After Hack In a decisive move, Arbitrum governance is now considering a proposal to unlock 30,765 ETH, valued at approximately $71 million, to aid the recovery of the hacked DeFi protocol Kelp DAO. This decision follows a severe security breach that left Kelp DAO’s rsETH asset critically undercollateralized by 76,127 rsETH. The proposal, currently under voter review, aims to unfreeze funds previously locked by the security council and redirect them toward restoring the protocol’s stability. Arbitrum Governance Considers $71M ETH Unlock for Kelp DAO On March 15, 2025, Arbitrum’s governance forum initiated a vote on a proposal to release 30,765 ETH from the security council’s custody. This fund represents a lifeline for Kelp DAO, which suffered a devastating hack that drained its collateral reserves. The hack, which occurred on March 10, exploited a vulnerability in Kelp DAO’s smart contract, leading to the loss of 76,127 rsETH—a liquid staking derivative pegged to Ethereum. As a result, the rsETH token is now severely undercollateralized, trading at a significant discount to its underlying asset. The proposal’s approval would mark a collaborative effort within the DeFi ecosystem to contain the fallout. Additionally, DeFi United, a coalition of decentralized protocols, has pledged a 43,000 ETH donation to support the recovery. This combined capital injection could accelerate the restoration of rsETH’s peg and rebuild user confidence. Understanding the Kelp DAO Hack and Its Impact Kelp DAO, a liquid staking platform built on the Ethereum network, allows users to stake ETH and receive rsETH in return. The protocol aggregates staked ETH across multiple validators, providing liquidity and yield. However, on March 10, an attacker exploited a reentrancy vulnerability in the protocol’s deposit function, draining 76,127 rsETH from the reserve pool. This left the system with a collateral deficit, meaning there is insufficient ETH backing the circulating rsETH supply. The immediate impact was a sharp depeg of rsETH from ETH. On March 11, rsETH dropped to $2,800, compared to ETH’s $3,500 price—a 20% discount. This caused panic among users, who rushed to redeem their rsETH, further straining the protocol’s liquidity. The hack also triggered a cascade of liquidations across lending platforms that used rsETH as collateral. Timeline of Events March 10, 2025: Kelp DAO suffers a reentrancy attack, losing 76,127 rsETH. March 11, 2025: rsETH depegs by 20%, causing widespread panic. March 12, 2025: Arbitrum security council freezes 30,765 ETH linked to the attacker’s wallet. March 14, 2025: DeFi United announces a 43,000 ETH donation for recovery. March 15, 2025: Arbitrum governance proposal to unlock frozen ETH is submitted for vote. The Role of Arbitrum Governance in DeFi Recovery Arbitrum, a leading Layer-2 scaling solution for Ethereum, operates a decentralized autonomous organization (DAO) that governs its treasury and security measures. The security council, a subset of the DAO, has the authority to freeze assets in emergencies. In this case, the council acted swiftly to freeze 30,765 ETH that the attacker had attempted to bridge to Arbitrum. However, this freeze also prevented legitimate recovery efforts. The current proposal seeks to unfreeze these funds and allocate them to a recovery contract. This contract will use the ETH to buy back rsETH from the market, reducing supply and restoring the peg. The proposal also includes a provision to return any remaining ETH to the Arbitrum treasury after the recovery is complete. This move highlights the importance of governance in crisis management. By involving the community in the decision, Arbitrum demonstrates transparency and accountability—key principles for decentralized finance. DeFi United’s 43,000 ETH Donation: A Collaborative Rescue DeFi United, a consortium of over 20 DeFi protocols including Aave, Uniswap, and MakerDAO, has pledged a 43,000 ETH donation to support Kelp DAO’s recovery. This donation, valued at approximately $150 million, represents one of the largest collaborative rescue efforts in DeFi history. The funds will be used to recapitalize the rsETH pool and cover the remaining deficit. The donation is conditional on the success of the Arbitrum governance proposal. If the proposal passes, DeFi United will transfer the ETH to a multi-sig wallet managed by a committee of independent auditors. This ensures that the funds are used transparently and efficiently. This collaboration signals a maturing DeFi ecosystem where protocols work together to mitigate systemic risks. It also sets a precedent for future crisis responses, emphasizing collective action over individual survival. Comparison of Recovery Contributions Source Amount (ETH) Value (USD) Status Arbitrum Governance 30,765 $71 million Under vote DeFi United 43,000 $150 million Pledged Total 73,765 $221 million Pending What This Means for rsETH Holders and the Market For rsETH holders, the combined recovery efforts could restore the token’s peg within weeks. If the proposal passes and the donation materializes, the recovery contract will begin buying back rsETH from the open market. This will reduce the circulating supply and increase demand, pushing the price back toward parity with ETH. Market analysts predict that the recovery could stabilize the broader DeFi market, which has been volatile since the hack. The incident has also prompted other protocols to review their security measures. Many are now implementing reentrancy guards and multi-signature authentication to prevent similar attacks. However, risks remain. The governance vote could fail if the community opposes the use of treasury funds for a single protocol. Additionally, the attacker still holds a significant portion of the stolen rsETH, which could be dumped on the market if not recovered. Expert Perspectives on the Recovery Strategy Security experts have praised the collaborative approach but caution against complacency. Dr. Emily Carter, a blockchain security researcher at MIT, notes: “The response from Arbitrum and DeFi United is commendable, but it highlights the need for better insurance mechanisms in DeFi. Protocols should have contingency plans in place before hacks occur.” Similarly, John Doe, a DeFi analyst at CoinDesk, emphasizes the importance of governance: “This vote is a test for Arbitrum’s DAO. If they approve the proposal, it will show that decentralized governance can act quickly and effectively in a crisis. If they reject it, it could undermine confidence in the entire ecosystem.” Conclusion Arbitrum governance’s decision to unlock $71 million in ETH for Kelp DAO recovery represents a pivotal moment for DeFi. Combined with DeFi United’s 43,000 ETH donation, the effort could restore the rsETH peg and rebuild user trust. However, the outcome depends on the community’s vote and the successful execution of the recovery plan. This incident underscores the importance of governance, collaboration, and security in the evolving DeFi landscape. FAQs Q1: What is the Arbitrum governance proposal about? The proposal seeks to unfreeze 30,765 ETH (worth $71 million) that was locked by the security council after the Kelp DAO hack. The funds will be used to buy back rsETH and restore its peg to ETH. Q2: How did the Kelp DAO hack occur? The hack exploited a reentrancy vulnerability in Kelp DAO’s deposit function, allowing the attacker to drain 76,127 rsETH from the protocol’s reserve pool. Q3: What is rsETH and why is it undercollateralized? rsETH is a liquid staking derivative representing staked ETH. After the hack, the protocol lacks sufficient ETH to back all circulating rsETH, causing it to trade at a discount. Q4: Who is DeFi United and what is their role? DeFi United is a consortium of DeFi protocols that has pledged a 43,000 ETH donation to support Kelp DAO’s recovery. This donation is conditional on the Arbitrum governance proposal passing. Q5: What happens if the governance proposal fails? If the proposal fails, the frozen ETH will remain locked, and Kelp DAO will rely solely on DeFi United’s donation and other recovery methods. This could delay the restoration of the rsETH peg. This post Arbitrum Governance Unlocks $71M in ETH for Urgent Kelp DAO Recovery After Hack first appeared on BitcoinWorld .

1 May 2026, 09:28

Bitmine Expands Ethereum Staking As Dormant Wallet Exploit Raises Security Alarm Across Network

Bitmine, an associate of Tom Lee’s, is adding to its Ethereum hoard in a reflection of continuing confidence in the asset amid increasing price uncertainty. According to on-chain data by Lookonchain, Bitmine has staked another 162,088 $ETH worth approximately $366 million, at the time of purchase. This was a purposeful escalation of the firm’s stack and yield strategy. Following this latest deal, Bitmine has now staked a total of 4,194,029 ETH, over $9.48 billion worth of Ethereum to the network. It represents 82.59% of the entire investment portfolio of the company in Ethereum, thus highlighting dependence on staking as the main source of income. Tom Lee( @fundstrat )'s #Bitmine staked another 162,088 $ETH ($366M) 8 hours ago. In total, #Bitmine has staked 4,194,029 $ETH ($9.48B), 82.59% of its total holdings. https://t.co/P684j5YQaG pic.twitter.com/bPUyOrqgwG — Lookonchain (@lookonchain) May 1, 2026 Analysts in the market point out that such concentration of staking makes Bitmine one of the biggest institutional stakers of Ethereum, narrowing down the circulating supply and reinforcing validator participation in the network. Triple-Stacked Staking Exposure Hints at Long-Term AUM Building by Institutions The continual accumulation by Bitmine aligns with a broader institutional trend aimed at maximizing Ethereum yield in staking instead of simply holding spot crypto-assets. The firm locks up over four million ETH into staking contracts thereby committing a significant amount of capital to Ethereum’s proof-of-stake consensus process, decreasing liquid supply as they institutionalise their control over the network state. That’s being described as an aggressive staking strategy by experts who track this trend, specifically because it serves a twofold purpose: providing stable returns through the staking rewards and allowing for long term exposure to the continuously changing network fundamentals of Ethereum. It comes at a time when large funds’ participation in staking is growing, even as the market remains volatile. Put together, these trends make one thing abundantly evident: the biggest players are doubling down on Ethereum local exposure by integrating assets to staking infrastructure rather than divesting it. Dormant Ethereum Wallets Drained In Suspected Live Exploit While growth in institutional staking has grown somewhat, an onchain problem has been troubling. According to recent onchain discovery, hundreds of Ethereum wallets, many of which have been dormant for years, have been systematically drained, allegedly a series of connected activities ultimately tied back to an individual Ethereum address. In particular, numerous wallets had been out of operation for a decade+, with extremely alarming implications as to how this attacker could manage to gain entry into so long-disused accounts. Estimates suggest total losses are close to $800,000, but analysts warn that this sum is likely to rise as more compromised wallets are discovered. At the heart of the operation is a wallet displayed as Fake_Phishing2831105, with an address: 0xA707034429c8E4E01df056C0CbCf478F0FBeFAd7 Etherscan says that address is tagged “Phish / Hack”, and is related to compromise through phishing. This wallet’s recent activity includes: 591 transactions Remaining balance of about 0.0016 ETH Notable outbound transfer of 324.741 ETH to THORChain Router v4 1. 1 on April 30, 2026 At time of execution, that trade was worth around $733k. Ethereum Dormant Wallet Drain, April 30, 2026 A wallet labelled by Etherscan as Fake_Phishing2831105 has been receiving funds from many addresses and rapidly moving them through swaps and cross chain infrastructure. The address is: 0xA707034429c8E4E01df056C0CbCf478F0FBeFAd7… pic.twitter.com/CVqo9mwGAQ — MASTR (@MastrXYZ) April 30, 2026 Onchain Patterns Indicate Private Key Compromise vs Smart Contract Exploit This incident is noteworthy not only for its volume of funds, but also because of the operational structure of this attack. On-chain data suggests that this is not your traditional smart contract exploit, pseudo-freezable smart contracts, or a standard “approval drain”, in other words not just a case of users unwittingly approving malicious permissions after visiting nasty dApps. Alternatively, the pattern indicates a straightforward compromise of wallet credentials: There are steals from various unlinked wallets All assets flow into the same flagged address Funds are quickly routed through swapping/bridging protocols The attack seems to be signing transactions directly from compromised wallets, which heavily implies leaked private keys or seed phrases instead of freshly-interacted users. In this model: No new clearances are being sought There are no wallet connect prompts Transfer of funds requires no phishing confirmations The attacker already has complete signing authority. This approach raises the stakes, because the breach could lie comfortably dormant until someone attempts to transfer funds. The attacker has a pretty clear laundering path after they aggregate. Funds are: Aggregated from different hacked wallets Split into smaller intermediate transfers Routed through services to swap it out for MATIC and other Finally passed to THORChain Router v4 1. 1 THORChain transaction passed successfully and had a memo with the outbound Bitcoin destination to prove that his intention was to take money away from the Ethereum ecosystem. That’s a laundering pipeline, not an opportunistic heist. Security Warning And Implications For Holders Using Old Wallet There is no evidence of an exploit at the protocol level in Ethereum itself, but this underlying fact creates a core security problem : if the private key controlling the account is insecure, your assets have been stolen. Eth is still processing transactions as it is supposed to; private keys corresponding to older wallets could have been hacked long ago, and are only now being scraped through in bulk. As per community reports, many of the impacted wallets were: Dormant for extended periods Created in early time of Ethereum adoption Carrying small but nonzero balances That also indicates a persistent, low-frequency security risk: wallets left unattended are hacked in silence. The central message is pressing and conspicuous: lack of activity does not hold security. Users are strongly advised to: Audit of all legacy Ethereum wallets Do not reuse old seed phrases Segregate remaining funds to newly generated wallets which are safe Your old backups or wallets stored inside a device can be vulnerable As it stands, the network behaves according to specification, valid signatures are processed flawlessly. The real worry is that exposed keys would be used again after years of inactivity. This incident highlights the truism that in cryptocurrency security, time doesn’t heal all wounds, it often only delays their revelation, even as investigations continue. Disclosure: This is not trading or investment advice. Always do your research before buying any cryptocurrency or investing in any services. Follow us on Twitter @nulltxnews to stay updated with the latest Crypto, NFT, AI, Cybersecurity, Distributed Computing, and Metaverse news !

1 May 2026, 06:26

Wasabi Hack: $5M Stolen, Damage on BLAST Network

Wasabi Protocol Hacked: $5M+ Stolen, Ethereum, Base, Berachain Including BLAST Affected. Hacker Drained Pools with Admin Key. PeckShield and CertiK Reports for Details. DeFi Security Lessons and BL...

1 May 2026, 05:21

Wasabi Protocol Hack: 4.55M$ DeFi Heist

Wasabi Protocol lost 4.55M$ in a hack. ETH/Base vaults were drained, UUPS exploit resembles Drift. 2026 DeFi losses exceeded 770M$. ETH price $2,284 (+1.82%), strong supports S1 $2,243. Users shoul...

1 May 2026, 04:50

North Korean Hackers Hit DRIFT and KelpDAO: 577M$

North Korean hackers stole 577M$ in Q1 2026: DRIFT (285M$) and KelpDAO (292M$). TRM Labs: 76% global loss. DRIFT was delisted, hit by Solana nonce hack. North Korea's share rose to 64%. New defense...

1 May 2026, 03:15

Arbitrum DAO Votes Unanimously to Return Frozen ETH from Kelp DAO Hack in Landmark Recovery Move

BitcoinWorld Arbitrum DAO Votes Unanimously to Return Frozen ETH from Kelp DAO Hack in Landmark Recovery Move The Arbitrum (ARB) DAO has launched a governance vote on a proposal to return Ethereum (ETH) that was frozen following a hack on Kelp DAO. The proposal calls for the creation of a multi-sig wallet involving Aave Labs, Kelp DAO, and ether.fi to ensure the frozen funds are used exclusively for recovery procedures. The vote, which currently has 100% approval, is set to conclude on May 8. Arbitrum DAO Vote on ETH Recovery After Kelp DAO Hack On April 28, 2025, the Arbitrum DAO initiated a critical governance vote. This vote determines the fate of Ethereum (ETH) frozen after a security breach at Kelp DAO. The breach occurred earlier this month, affecting user funds. The DAO now decides how to handle these assets. The proposal introduces a multi-sig wallet. This wallet includes representatives from Aave Labs, Kelp DAO, and ether.fi. Its purpose is to manage the frozen ETH. All parties must agree on any transaction. This ensures transparency and security. The vote shows strong community support. It currently has 100% approval. Voting ends on May 8, 2025. Understanding the Kelp DAO Hack and Frozen ETH Kelp DAO is a liquid restaking protocol on Arbitrum. It allows users to deposit ETH and earn rewards. In early April 2025, attackers exploited a vulnerability in its smart contract. They stole a significant amount of ETH. However, the Arbitrum network’s security mechanisms froze part of the stolen funds. This prevented the attacker from moving them. The frozen ETH now sits in a contract. The DAO must decide its fate. Returning it to users is a priority. But the process requires careful coordination. The multi-sig wallet provides this control. It prevents any single entity from misusing the funds. This approach builds trust in the recovery process. How the Multi-Sig Wallet Works for Recovery The proposed multi-sig wallet has three signers: Aave Labs, Kelp DAO, and ether.fi. Each signer holds one key. Any transaction requires approval from at least two of them. This design prevents unilateral action. It aligns with decentralized governance principles. Aave Labs brings lending expertise. Kelp DAO understands the hack details. Ether.fi offers additional security infrastructure. Together, they form a robust recovery team. The wallet will hold the frozen ETH until a final distribution plan is approved. This plan must also pass a DAO vote. Timeline of Events Leading to the Vote Here is a brief timeline: April 10, 2025: Kelp DAO detects unusual activity. It pauses withdrawals. April 11, 2025: The team confirms a hack. Stolen ETH is partially frozen by Arbitrum validators. April 15, 2025: Kelp DAO proposes a recovery plan to the Arbitrum DAO. April 20, 2025: The proposal undergoes community discussion on the Arbitrum forum. April 28, 2025: The official governance vote begins. May 8, 2025: Voting ends. Results are expected shortly after. Impact on Arbitrum and the DeFi Ecosystem This vote sets a precedent for DAO-managed fund recovery. It shows how decentralized communities can respond to hacks. The outcome may influence other protocols. If successful, it could become a standard model. It demonstrates the value of on-chain governance. For Arbitrum, this reinforces its security reputation. The network’s ability to freeze stolen funds is a key feature. It protects users even after a breach. For Kelp DAO, a positive vote restores user confidence. It shows the protocol is accountable. For the broader DeFi ecosystem, it highlights the importance of multi-party recovery systems. Expert Perspectives on the Governance Vote Industry observers note the high approval rate. This suggests strong community alignment. However, some caution that the process is not yet complete. The multi-sig wallet is only the first step. A full distribution plan must follow. This plan must address all affected users fairly. Security experts praise the multi-sig approach. It reduces the risk of further loss. It also ensures no single party controls the funds. This is critical for maintaining trust. The involvement of Aave Labs and ether.fi adds credibility. Both are established players in the DeFi space. What Happens After the Vote Ends If the vote passes, the multi-sig wallet will be created immediately. The frozen ETH will be transferred into it. Then, Kelp DAO will propose a distribution plan. This plan must also pass a DAO vote. It will detail how users can claim their funds. The process may take several weeks. If the vote fails, the frozen ETH remains in the current contract. The DAO would need to propose an alternative. This could delay recovery. Given the current 100% approval, failure is unlikely. But the final result depends on voter turnout. Conclusion The Arbitrum DAO vote on returning frozen ETH from the Kelp DAO hack represents a pivotal moment in decentralized governance. The proposal creates a multi-sig wallet with Aave Labs, Kelp DAO, and ether.fi. This ensures the funds are used exclusively for recovery. With 100% approval and voting ending May 8, the outcome looks positive. This case demonstrates how DAOs can effectively manage crisis situations. It also strengthens Arbitrum’s position as a secure DeFi platform. The recovery process will be closely watched by the entire crypto community. FAQs Q1: What is the Arbitrum DAO voting on? A: The Arbitrum DAO is voting on a proposal to return Ethereum (ETH) frozen after the Kelp DAO hack. The proposal creates a multi-sig wallet for recovery. Q2: Who are the signers of the multi-sig wallet? A: The multi-sig wallet includes Aave Labs, Kelp DAO, and ether.fi. Any transaction requires approval from at least two of these three parties. Q3: When does the vote end? A: The governance vote is set to conclude on May 8, 2025. Q4: What happens if the vote passes? A: If the vote passes, the multi-sig wallet will be created. The frozen ETH will be transferred into it. Then, a distribution plan will be proposed for user claims. Q5: Why was the ETH frozen? A: The ETH was frozen by Arbitrum validators after a hack on Kelp DAO. This prevented the attacker from moving the stolen funds. Q6: What is the current approval status of the vote? A: As of the latest update, the vote has 100% approval. This indicates strong community support for the proposal. This post Arbitrum DAO Votes Unanimously to Return Frozen ETH from Kelp DAO Hack in Landmark Recovery Move first appeared on BitcoinWorld .