LayerZero blames Kelp's setup for $290 million exploit, attributes it to North Korea's Lazarus
By Shaurya Malwa
Published on April 20, 2026.
LayerZero has attributed the $290 million Kelp DAO exploit to North Korea's Lazarus Group and its TraderTraitor subunit, who compromised two of the remote procedure call (RPC) nodes that LayerZero's verifier relied on to confirm cross-chain transactions. The attackers swapped the binary software running on two of these nodes with malicious versions designed to tell LayerZero its verifier that a fraudulent transaction had occurred, while simultaneously reporting accurate data to every other system querying these same nodes. The attack only worked because Kelp ran a 1-of-1 verifier configuration, which LayerZero had previously warned against. The company has confirmed no contagion to any other application on the protocol.
Related Articles
Coinbase Introduces Two AI Agents to Assist Workers
Coinbase has deployed two AI agents, Fred and Balaji, to assist employees with work tasks, aiming to outnumber human employees and become an integral part of future blockchain payments.
Bitcoin vs Ethereum: Two Different Approaches to Quantum Threats
The quantum computing threat posed by quantum computers poses a distinct security challenge to Bitcoin and Ethereum networks, with different strategies for addressing vulnerabilities and long-term security.
Samsung shares its thesis on the future of design and AI (exclusive)
Samsung's exhibition at Milan Design Week showcases its vision for AI, design, and societal impact, emphasizing interconnected devices and ethical collaboration.