The attacker behind the Kelp DAO exploit has laundered nearly all of the roughly $220 million in unfrozen stolen funds, sharply reducing the practical recovery window for one of the largest decentralized finance breaches of 2026. On-chain tracking shows only about $1.7 million remains in the original exploiter wallet, with most of the remaining assets routed through cross-chain and privacy infrastructure including THORChain, Wasabi, Tornado Cash and Umbra.
The laundering activity follows the April 18 attack that drained 116,500 rsETH from Kelp DAO’s LayerZero-based bridge. The exploit was valued at roughly $290 million and involved the use of a forged LayerZero packet to unlock rsETH from Ethereum mainnet escrow. The stolen tokens were then used as collateral across DeFi lending markets to borrow an estimated $236 million in WETH and wstETH, creating losses that quickly spread beyond Kelp DAO’s own users.
The case has become a major stress test for decentralized finance risk management because it combines three of the sector’s most sensitive vulnerabilities: bridge security, liquid restaking collateral and cross-chain laundering. It also shows how quickly the recovery window can close when attackers convert stolen assets into more liquid instruments and fragment them across privacy layers.
From exploit to laundering cascade
The attacker began moving funds shortly after the exploit, with blockchain investigators tracking large transfers across Ethereum and Bitcoin. Early flows included approximately $1.5 million bridged from Ethereum to Bitcoin through THORChain and additional funds routed through Umbra, a privacy protocol. Those initial transfers later expanded into a broader laundering campaign involving multiple venues and chains.
Analysts described the laundering as a staged process in which assets were bridged into Bitcoin through THORChain, mixed using Wasabi CoinJoin, moved back toward Ethereum and then routed again through Tornado Cash and other privacy tools. Each step made recovery more difficult by separating stolen funds from their original on-chain source and placing them into systems where tracing, freezing and legal enforcement become slower and more jurisdictionally complex.
That matters because stolen asset recovery usually depends on speed. Funds can sometimes be frozen if they pass through centralized exchanges, custodians or identifiable liquidity venues. Once assets are broken into smaller flows and mixed across chains, investigators may still be able to follow parts of the trail, but the practical probability of returning funds falls sharply.
Frozen funds become the main recovery path
The main recoverable pool now appears to be approximately $71 million in assets frozen by Arbitrum’s Security Council. With almost all unfrozen funds already laundered, recovery efforts are likely to focus on frozen ether, legal orders, governance approvals and any protocol-level reimbursement structure. Reports have indicated that a governance proposal and U.S. court order supported moving frozen rsETH-related funds to an Aave-controlled multisignature wallet for recovery.
The broader market impact extends beyond Kelp DAO. The exploit left more than 112,000 rsETH unbacked on the bridge adapter and contributed to stress across lending markets, including freezes on Aave and estimated bad debt scenarios ranging from about $123.7 million to $230.1 million depending on how losses were allocated. Total DeFi value locked also fell sharply after the incident as users reassessed bridge exposure and restaking-linked collateral risk.
For institutions, the incident reinforces concerns around bridge design, oracle assumptions, collateral listing standards and emergency governance powers. The exploit reportedly involved a 1-of-1 verifier configuration in the LayerZero-based bridge setup, creating a concentrated verification risk. That structure is likely to accelerate reviews of whether cross-chain protocols should require multiple independent verifiers, stricter message validation and clearer emergency shutdown procedures.
The laundering of nearly all unfrozen funds means Kelp DAO’s recovery phase has moved from active asset retrieval to damage control. The remaining questions are how frozen assets will be distributed, how losses will be allocated across affected protocols and whether DeFi infrastructure providers can strengthen controls before the next large bridge-related exploit tests the market again.
