News Heat Trend
Project Overview
Lido is a liquid staking solution for blockchains. It enables users to stake their ETH and other proof-of-stake assets without locking their assets or maintaining infrastructure, while participating in on-chain activities such as lending.
$TOP Token Suffers Governance Attack, Sustaining ~$1.59M in Losses
According to BlockSec Phalcon (@Phalcon_xyz), the $TOP token suffered a governance attack, resulting in losses of approximately $1.59 million. The attacker exploited the token’s low market capitalization to acquire over 50% of voting power at minimal cost. Subsequently, they passed a malicious governance proposal to mint a large quantity of $TOP tokens for themselves, then swapped these tokens for WETH via the Balancer liquidity pool—depleting the pool’s liquidity. BlockSec Phalcon advises projects using governance mechanisms similar to those of Lido or Aragon to promptly review governance security measures, including voting power distribution, quorum and approval thresholds, and minting permissions.
Aave plans comprehensive upgrade of collateral and listing standards following KelpDAO security incident
Linda Jeng, Chief Legal and Policy Officer at Aave Labs, stated during Consensus Miami 2026 that Aave's previous risk framework overly focused on financial risks and price volatility. Looking ahead, the protocol will incorporate assessments of cross-chain interoperability, cybersecurity vulnerabilities, and underlying asset architecture.This reform directly stems from the rsETH incident that occurred in April. At that time, an attacker exploited a vulnerability in the KelpDAO cross-chain bridge to mint approximately 116,500 unbacked rsETH (valued at around $293 million), deposited it as collateral into Aave, and borrowed real WETH, leading to significant bad debt risks for the protocol.Jeng revealed that Aave will also release a formal "listing standards handbook" for asset issuers in the future, and will begin evaluating the correlation between DeFi protocols from a systemic risk perspective, rather than analyzing individual pools in isolation.Additionally, a "DeFi United" bailout plan involving Lido Finance, EtherFi, Ethena, and others has been launched to cover collateral shortfalls and prevent further proliferation of bad debt. (CoinDesk)
Kelp DAO Cross-Chain Bridge Attacked, ~$292M rsETH Stolen
According to CoinDesk, Kelp DAO’s LayerZero-based cross-chain bridge was attacked, with the attacker withdrawing 116,500 rsETH—worth approximately $292 million at current prices, or roughly 18% of its circulating supply. This incident has become the largest DeFi attack of 2026 to date. In response, Aave, SparkLend, and Fluid have frozen rsETH-related markets, and Lido Finance has suspended new deposits into its earnETH product. Kelp DAO stated it is jointly investigating the incident with LayerZero, auditing firms, and external security experts.
Cobie Aggregates 20 Million LDO Tokens from Associated Addresses and Transfers Them to Multiple Exchanges
According to on-chain analyst Ember (@EmberCN), multiple addresses associated with @cobie aggregated 20 million $LDO (worth approximately $6.58 million) today and transferred them to centralized exchanges—including Binance, OKX, and Kraken—within half an hour.
An “$APE insider” who previously made $2.27 million in a single day has opened a long position on 8.69 million $LDO tokens with 5x leverage.
According to on-chain analytics platform Lookonchain (@lookonchain), the "$APE insider" — who previously made $2.27 million in a single day — has re-entered the market, opening a long position of 8.69 million $LDO with 5x leverage, valued at approximately $3.72 million. Notably, this trader had previously opened a long position of 10.26 million $LDO (valued at $4.58 million) on the same asset, but exited with a loss of $194,000.
whale spends $17 million to buy 7,284 ETH, which has been transferred to Lido for staking
according to Onchain Lens monitoring, the whale address 0x674 spent approximately $17 million USDC to purchase 7,284 ETH at an average price of $2,334, and subsequently transferred the ETH to Lido for staking.
APE-related insider addresses continue accumulating long positions in LDO, with holdings reaching 10.26 million tokens.
According to on-chain analytics platform Lookonchain (@lookonchain), an insider APE-related address has further increased its long position in LDO, currently holding a total of 10.26 million LDO long contracts, valued at approximately $4.58 million at the current price.
Arkham: Ethereum Foundation Unstakes $48.9M Worth of ETH, Market Awaits Potential Further Sales
on-chain analytics platform Arkham posted on X, stating that the Ethereum Foundation has unstaked approximately $48.9 million worth of ETH. Tracking data shows that the Ethereum Foundation has deposited WSTETH into Lido's unstETH contract and will receive the corresponding ETH once the unlocking process is complete.The market's focus is on whether the Ethereum Foundation will proceed to sell the ETH obtained from this unstaking. Previously, the Ethereum Foundation has sold ETH on multiple occasions for operational fund management, drawing ongoing market attention to potential selling pressure.
rsETH Hack Causes 68,900 ETH Shortfall; DeFi United Raises 13,500 ETH for Industry自救
According to on-chain analyst Ember (@EmberCN), the rsETH incident on April 18 resulted in a funding shortfall of approximately 68,900 ETH (around $160 million): the hacker collateralized rsETH to borrow 99,600 ETH; after Arbitrum recovered 30,700 ETH, the remaining funds were fully converted by the hacker into BTC. The incident has now entered the remediation phase. Aave is coordinating the establishment of a “DeFi United” relief fund, which has so far received cumulative donations totaling 13,500 ETH (approximately $31.45 million). Donors include Lido Finance (2,500 stETH), ether.fi Foundation (5,000 ETH), Aave founder Stani Kulechov (5,000 ETH), Golem Foundation (1,000 ETH), as well as LayerZero and Ink Foundation (amounts undisclosed).
$TOP Token Suffers Governance Attack, Sustaining ~$1.59M in Losses
According to BlockSec Phalcon (@Phalcon_xyz), the $TOP token suffered a governance attack, resulting in losses of approximately $1.59 million. The attacker exploited the token’s low market capitalization to acquire over 50% of voting power at minimal cost. Subsequently, they passed a malicious governance proposal to mint a large quantity of $TOP tokens for themselves, then swapped these tokens for WETH via the Balancer liquidity pool—depleting the pool’s liquidity. BlockSec Phalcon advises projects using governance mechanisms similar to those of Lido or Aragon to promptly review governance security measures, including voting power distribution, quorum and approval thresholds, and minting permissions.
Aave plans comprehensive upgrade of collateral and listing standards following KelpDAO security incident
Linda Jeng, Chief Legal and Policy Officer at Aave Labs, stated during Consensus Miami 2026 that Aave's previous risk framework overly focused on financial risks and price volatility. Looking ahead, the protocol will incorporate assessments of cross-chain interoperability, cybersecurity vulnerabilities, and underlying asset architecture.This reform directly stems from the rsETH incident that occurred in April. At that time, an attacker exploited a vulnerability in the KelpDAO cross-chain bridge to mint approximately 116,500 unbacked rsETH (valued at around $293 million), deposited it as collateral into Aave, and borrowed real WETH, leading to significant bad debt risks for the protocol.Jeng revealed that Aave will also release a formal "listing standards handbook" for asset issuers in the future, and will begin evaluating the correlation between DeFi protocols from a systemic risk perspective, rather than analyzing individual pools in isolation.Additionally, a "DeFi United" bailout plan involving Lido Finance, EtherFi, Ethena, and others has been launched to cover collateral shortfalls and prevent further proliferation of bad debt. (CoinDesk)
Lido Updates Kelp Security Incident Progress: EarnETH Vault to Reopen After Protocol Recovery
Lido has provided the latest update on the Kelp security incident, stating that the Snapshot vote regarding the EarnETH first-loss protection mechanism falling below the 1% threshold has reached quorum and been approved. User losses from EarnETH will be fully covered by Lido Earn’s first-loss mechanism. The rsETH held by the attacker has been liquidated, and the related stETH has been transferred to the DeFi United rescue plan.Additionally, the EarnETH vault is expected to reopen shortly after the Kelp protocol resumes operation, at which point users will be able to deposit and withdraw funds normally. Lido emphasized that during the freeze period, both the EarnETH and EarnUSD vaults continued to generate yield. Currently, EarnETH users only need to wait for a brief unfreezing process to complete. Once funds are restored, compensation will be provided in accordance with the first-loss protection mechanism.
DeFi United Raises Over $300 Million in Funding
Circle Ventures, Consensys, and Joseph Lubin have announced their support for the DeFi United initiative, aimed at mitigating losses caused by the Kelp DAO vulnerability. Circle Ventures is supporting the ecosystem by purchasing AAVE tokens. Consensys and Ethereum co-founder Joseph Lubin have confirmed the provision of 30,000 ETH to DeFi United. To date, DeFi United has raised over 132,000 ETH, with a total value exceeding $300 million. These funds will be used to cover bad debts resulting from an attacker minting unbacked rsETH via the LayerZero bridge and borrowing assets on Aave. Previously, Aave proposed a donation of 25,000 ETH, while Lido DAO, Ether.fi, and Kelp have respectively proposed or pledged donations of 2,500 ETH, 5,000 ETH, and 2,000 ETH.
rsETH Hack Causes 68,900 ETH Shortfall; DeFi United Raises 13,500 ETH for Industry自救
According to on-chain analyst Ember (@EmberCN), the rsETH incident on April 18 resulted in a funding shortfall of approximately 68,900 ETH (around $160 million): the hacker collateralized rsETH to borrow 99,600 ETH; after Arbitrum recovered 30,700 ETH, the remaining funds were fully converted by the hacker into BTC. The incident has now entered the remediation phase. Aave is coordinating the establishment of a “DeFi United” relief fund, which has so far received cumulative donations totaling 13,500 ETH (approximately $31.45 million). Donors include Lido Finance (2,500 stETH), ether.fi Foundation (5,000 ETH), Aave founder Stani Kulechov (5,000 ETH), Golem Foundation (1,000 ETH), as well as LayerZero and Ink Foundation (amounts undisclosed).
Lido proposes using up to $5.8M stETH to cover Kelp’s funding gap
the Lido team has initiated a proposal, planning to allocate up to 2,500 stETH (approximately $5.8 million) from the DAO to cover the rsETH asset shortfall resulting from the recent attack on Kelp DAO.Lido noted that the LayerZero-based exploit has led to insufficient rsETH reserves, triggering a chain reaction across the DeFi ecosystem, including rising interest rate pressure, tightening lending markets, and certain leveraged strategies facing passive liquidation risks.The proposal emphasizes that these funds will only be used as part of a complete recovery solution, provided that the overall shortfall can be fully addressed.Previously, the approximately $292 million attack on Kelp DAO had already impacted Aave, leading to bad debt issues, and its total value locked (TVL) once declined by nearly $8 billion.
Aave plans comprehensive upgrade of collateral and listing standards following KelpDAO security incident
Linda Jeng, Chief Legal and Policy Officer at Aave Labs, stated during Consensus Miami 2026 that Aave's previous risk framework overly focused on financial risks and price volatility. Looking ahead, the protocol will incorporate assessments of cross-chain interoperability, cybersecurity vulnerabilities, and underlying asset architecture.This reform directly stems from the rsETH incident that occurred in April. At that time, an attacker exploited a vulnerability in the KelpDAO cross-chain bridge to mint approximately 116,500 unbacked rsETH (valued at around $293 million), deposited it as collateral into Aave, and borrowed real WETH, leading to significant bad debt risks for the protocol.Jeng revealed that Aave will also release a formal "listing standards handbook" for asset issuers in the future, and will begin evaluating the correlation between DeFi protocols from a systemic risk perspective, rather than analyzing individual pools in isolation.Additionally, a "DeFi United" bailout plan involving Lido Finance, EtherFi, Ethena, and others has been launched to cover collateral shortfalls and prevent further proliferation of bad debt. (CoinDesk)
Lido Updates Kelp Security Incident Progress: EarnETH Vault to Reopen After Protocol Recovery
Lido has provided the latest update on the Kelp security incident, stating that the Snapshot vote regarding the EarnETH first-loss protection mechanism falling below the 1% threshold has reached quorum and been approved. User losses from EarnETH will be fully covered by Lido Earn’s first-loss mechanism. The rsETH held by the attacker has been liquidated, and the related stETH has been transferred to the DeFi United rescue plan.Additionally, the EarnETH vault is expected to reopen shortly after the Kelp protocol resumes operation, at which point users will be able to deposit and withdraw funds normally. Lido emphasized that during the freeze period, both the EarnETH and EarnUSD vaults continued to generate yield. Currently, EarnETH users only need to wait for a brief unfreezing process to complete. Once funds are restored, compensation will be provided in accordance with the first-loss protection mechanism.
Lido DAO Proposes Authorizing the Use of the First-Loss Fund to Cover Losses from the Kelp Incident
According to the Lido Governance Forum, Lido Earn contributors have submitted a proposal to the DAO requesting authorization to deploy the existing First Loss Reserve to cover losses arising from the Kelp incident, waiving the original 1% threshold requirement. It is estimated that, assuming the DeFi United rescue plan succeeds, the remaining borrowing-rate losses for Lido Earn’s leveraged staking/re-staking positions will amount to approximately 400–600 ETH. Contributors stated they will collaborate with curators to jointly absorb these losses; however, full coverage by curators alone is currently deemed unrealistic. The proposal stresses that this authorization constitutes a one-time exception specific to the Kelp incident and does not alter the standard 1% threshold rule, does not involve additional treasury allocations, and is not intended to subsidize APY or support post-recovery yields. It further notes that if litigation arises from these losses, associated legal costs alone could reach several hundred thousand dollars. Given that the rsETH situation is expected to be resolved within 5–10 days—and considering the standard snapshot voting window is 7 days—the proposers emphasize the time-sensitive nature of this vote. After resolution, the team plans to publish a comprehensive post-mortem report and advance improvements to risk frameworks and operational mechanisms.
DeFi United Raises Over $300 Million in Funding
Circle Ventures, Consensys, and Joseph Lubin have announced their support for the DeFi United initiative, aimed at mitigating losses caused by the Kelp DAO vulnerability. Circle Ventures is supporting the ecosystem by purchasing AAVE tokens. Consensys and Ethereum co-founder Joseph Lubin have confirmed the provision of 30,000 ETH to DeFi United. To date, DeFi United has raised over 132,000 ETH, with a total value exceeding $300 million. These funds will be used to cover bad debts resulting from an attacker minting unbacked rsETH via the LayerZero bridge and borrowing assets on Aave. Previously, Aave proposed a donation of 25,000 ETH, while Lido DAO, Ether.fi, and Kelp have respectively proposed or pledged donations of 2,500 ETH, 5,000 ETH, and 2,000 ETH.
Kelp: Progress made on rsETH recovery; remaining shortfall is approximately 89,500 ETH.
KelpDAO announced that, since April 18, it has been coordinating with Aave and ecosystem partners to restore rsETH holdings for rsETH holders. The initial shortfall from this incident was 163,200 ETH. To date, Kelp has recovered 40,300 rsETH—approximately 43,000 ETH—and the Arbitrum Security Council has separately secured 30,700 ETH. The remaining shortfall stands at approximately 89,500 ETH. Kelp stated that, of this remaining shortfall, Mantle, Stani Kulechov, EtherFi, Lido, and Golem have publicly committed to contributing a total of 43,500 ETH, and Kelp is working with these partners to formalize those contributions. Kelp emphasized that rsETH holders are the top priority.
Lido Discloses Impact of Kelp Security Incident; ~9% Exposure of EarnETH Affected
Lido has released an update regarding the Kelp security incident, stating that its Earn-series vaults are working with the management team to address the issue, focusing on two key risk areas: rsETH exposure and tightening liquidity in lending markets. Lido emphasizes that its core staking protocol remains unaffected, and both stETH and wstETH remain secure and stable. Currently, only the EarnETH vault holds approximately 9% of its TVL in rsETH exposure; related deposits and withdrawals have been suspended by the management team pending resolution. Of the ~$70 million in ETH stolen in the earlier attack, roughly $70 million has already been recovered; asset recovery and loss allocation efforts are ongoing. To mitigate liquidity pressure, the management team has reduced leverage and optimized position structures, significantly decreasing wETH debt exposure. Should losses ultimately materialize, EarnETH will activate its $3 million “first-loss protection mechanism,” funded by the DAO. Other vaults remain unaffected: DVV and EarnUSD are operating normally. The GGV sub-vault is currently experiencing negative yields due to a combination of recursive staking strategies and rising borrowing rates, but active adjustments are underway. Users’ previously submitted withdrawal requests will be processed at pre-incident valuations.
Related news
$TOP Token Suffers Governance Attack, Sustaining ~$1.59M in Losses
According to BlockSec Phalcon (@Phalcon_xyz), the $TOP token suffered a governance attack, resulting in losses of approximately $1.59 million. The attacker exploited the token’s low market capitalization to acquire over 50% of voting power at minimal cost. Subsequently, they passed a malicious governance proposal to mint a large quantity of $TOP tokens for themselves, then swapped these tokens for WETH via the Balancer liquidity pool—depleting the pool’s liquidity. BlockSec Phalcon advises projects using governance mechanisms similar to those of Lido or Aragon to promptly review governance security measures, including voting power distribution, quorum and approval thresholds, and minting permissions.
Cobie Aggregates 20 Million LDO Tokens from Associated Addresses and Transfers Them to Multiple Exchanges
According to on-chain analyst Ember (@EmberCN), multiple addresses associated with @cobie aggregated 20 million $LDO (worth approximately $6.58 million) today and transferred them to centralized exchanges—including Binance, OKX, and Kraken—within half an hour.
Lido early investor Cobie suspected to have deposited 20 million LDO worth $6.6 million into multiple centralized exchanges
according to Onchain Lens monitoring, Cobie is suspected to have deposited 20 million LDO, worth $6.6 million, into multiple centralized exchanges. Cobie was one of the early investors in Lido before its launch in 2021.
Lido: Swellchain will cease operations on June 15; users must withdraw their wstETH assets in advance.
Lido announced on X that, with Swellchain’s upcoming shutdown, users must withdraw their wstETH on-chain before June 15, 2026. After this date, Swellchain will shut down permanently, and any wstETH remaining on-chain may be unrecoverable. Lido urges users to complete their asset migration promptly to avoid potential losses.
An “$APE insider” who previously made $2.27 million in a single day has opened a long position on 8.69 million $LDO tokens with 5x leverage.
According to on-chain analytics platform Lookonchain (@lookonchain), the "$APE insider" — who previously made $2.27 million in a single day — has re-entered the market, opening a long position of 8.69 million $LDO with 5x leverage, valued at approximately $3.72 million. Notably, this trader had previously opened a long position of 10.26 million $LDO (valued at $4.58 million) on the same asset, but exited with a loss of $194,000.
whale spends $17 million to buy 7,284 ETH, which has been transferred to Lido for staking
according to Onchain Lens monitoring, the whale address 0x674 spent approximately $17 million USDC to purchase 7,284 ETH at an average price of $2,334, and subsequently transferred the ETH to Lido for staking.