NewsNewsDetails
Aave adjusts listing standards and tightens cross-chain risk review following the rsETH incident.
CoinDesk
06-01 13:13
Ai Focus
Aave stated that the rsETH attack stemmed from a failure in the LayerZero cross-chain bridge verification used by KelpDAO, rather than a vulnerability in the protocol's own contract. Aave will review all V3 assets and incorporate cross-chain bridge, oracle, and custody risks into its listing review process.
Helpful
No.Help

Following the rsETH attack in April, Aave released a post-mortem stating that the loss did not stem from a vulnerability in the protocol's own contract, but rather from a failure of the LayerZero cross-chain bridge verification used by KelpDAO. This incident prompted Aave to review all assets in V3 and tighten its scrutiny of collateral listings.

The attack originated from the cross-link bridge.

According to Aave's disclosure, attackers exploited a single validator to allow forged cross-chain messages, minting 116,500 rsETH tokens on Ethereum that were not backed by any actual assets. These tokens were then deposited into Aave and used as collateral to borrow funds, ultimately resulting in an unrecoverable loss for the protocol.

Aave states that the lending logic of the protocol itself operates as designed; the real failure lies in the bridging verification process upon which assets rely before entering the protocol. This means that the risk no longer comes solely from application-layer contracts but may also stem from cross-chain and off-chain infrastructure.

V3 All assets enter review

Aave stated that in the future, when evaluating collateral, it will no longer only look at price volatility, liquidity, and contract audit results, but will also include cross-chain bridges, oracle reliance, third-party contracts, custody arrangements, and operational security in its review.

  • Cross-chain bridge infrastructure and verification methods
  • Oracle dependency and third-party contract risks
  • Trusteeship arrangements and operational safety measures

This review argues that the connections between DeFi protocols are becoming increasingly deep, and looking at the tokens themselves is no longer sufficient to cover all the risks. The bridging networks, verification systems, and operational processes behind the assets may also directly impact protocol security.

295 parameter adjustments have been performed.

Aave also proposes a faster, automated defense solution. When a collateralized asset triggers a preset risk threshold, the system can automatically reduce its loan-to-value ratio to zero, directly canceling its borrowing capacity to reduce the risk from spreading to a wider area.

Since the incident, Aave's risk management team has implemented approximately 295 parameter adjustments in the V3 market, including 168 supply cap reductions and 66 borrowing cap reductions, with the aim of reducing exposure to single assets.

Tip
$0
Like
0
Save
0
Views 567
CoinMeta reminds readers to view blockchain rationally, stay aware of risks, and beware of virtual token issuance and speculation. All content on this site represents market information or related viewpoints only and does not constitute any form of investment advice. If you find sensitive content, please click“Report”,and we will handle it promptly。
Submit
Comment 0
Hot
Latest
No comments yet. Be the first!
Related
RLUSD integrates with Wormhole's native cross-chain transfer functionality.
RLUSD achieves native multi-chain transfers through Wormhole NTT, and the market is paying attention to its impact on the circulation of cross-chain stablecoins and the activity of the Wormhole ecosystem.
CoinPedia
·2026-06-04 23:58:00
118
Virtuals migrates over $700 million worth of cross-chain infrastructure to Chainlink
Virtuals has migrated its $700 million VIRTUAL cross-chain infrastructure from LayerZero to Chainlink CCIP. Several other protocols have made similar adjustments following the KelpDAO incident.
AMBCrypto
·2026-06-04 23:28:55
504
Alephium cross-chain bridge attacked, losing $815,000 in 7 minutes.
The TokenBridge between Alephium and Ethereum was attacked, and approximately $815,000 worth of assets were transferred out within 7 minutes.
AMBCrypto
·2026-06-01 09:23:05
437
LayerZero advances its institutional financial footprint, reigniting controversy over cross-chain security.
LayerZero announced its institutional financial expansion plan and launched a new chain, "Zero"; L2BEAT, on the other hand, questioned whether the migration of cross-chain infrastructure would necessarily bring significant security improvements.
AMBCrypto
·2026-06-04 01:27:40
676
Crypto attack losses decreased significantly in May compared to the previous month, but cross-chain bridges remained the hardest hit area.
Losses from crypto attacks declined significantly in May, but cross-chain bridges and code vulnerabilities remain the main sources of risk.
Coinpaper
·2026-06-01 18:33:53
666
Latest from Author
Refresh
arrow
US regulatory officials respond to World Liberty licensing controversy at hearing
US regulatory officials respond to World Liberty licensing controversy at hearing
1h ago   431peopleViews
Foreign media: Atlas Capital CEO says Bitcoin may drop 70% first.
Foreign media: Atlas Capital CEO says Bitcoin may drop 70% first.
1h ago   439peopleViews
Foreign media: Ethereum's general-purpose Layer 2 is entering a period of contraction.
Foreign media: Ethereum's general-purpose Layer 2 is entering a period of contraction.
5h ago   746peopleViews
Recommended