On April 18, the Lazarus Group breached Layerzero's infrastructure, stealing $300 million in rsETH. KelpDAO responded by migrating to Chainlink CCIP to improve cross-chain security. The breach has been attributed to a systemic failure in Layerzero's core infrastructure, contradicting Layerzero's claims that KelpDAO's configuration was at fault. KelpDAO highlighted that 47% of Layerzero OApps used the same 1-1 DVN setup, which Layerzero had previously verified as secure. KelpDAO's response included evidence of Layerzero's assurances regarding the security of the default setup.
"KelpDAO has issued a blistering response to Layerzero Labs following an April 18 exploit that drained more than $300 million in DeFi assets, primarily in the form of rsETH."
"Layerzero's post-mortem framed the incident as a KelpDAO configuration issue, specifically targeting Kelp's use of a 1-of-1 decentralized verifier network (DVN) setup where Layerzero Labs was the sole validator."
"KelpDAO has fired back, citing Dune analysis showing that 47% of Layerzero OApp contracts—more than 1,200 applications—utilize the same 1-1 DVN security floor."
"Kelp points out that Layerzero's own OFT quickstart guide and default templates recommend the 1-1 setup with Layerzero Labs as the sole required DVN."
Read at news.bitcoin.com
Unable to calculate read time
Collection
[
|
...
]