Crypto Crash: How a Bridge Hack Triggered a $6 Billion Aave Withdrawal Frenzy

A hack on a LayerZero bridge that lets people move rsETH tokens from one network to another went live Saturday, and the fallout was felt across DeFi. The attackers siphoned off about $291 million worth of rsETH, then used the stolen tokens to borrow money from Aave, one of the most trusted lending platforms. When Aave saw this suspicious activity, it froze markets linked to rsETH, leaving users unable to pull out their own funds. The freeze had a domino effect. Aave’s core lending pool hit a 100% utilization rate, meaning every dollar that had been deposited was now tied up in loans. Users who had put their money into Ethereum or wrapped Ethereum were stuck, and many tried to borrow against these deposits in stablecoins to free up cash. This extra borrowing only tightened the liquidity squeeze, creating what some experts call “negative secondary effects. ” Because Aave was suddenly unable to meet withdrawal requests, users panicked and rushed to pull money from other DeFi protocols as well. By early Sunday, the total net withdrawals from Aave alone had reached $6. 2 billion, a number that sparked worry across the whole ecosystem. The situation also sent Aave’s governance token down 16% to about $90, and Ethereum slipped around 2%, showing how a single exploit can ripple through markets.The root of the problem lay in Kelp DAO’s rsETH bridge, which relies on LayerZero to transfer messages and assets between chains. Analysts point out that the exploit hinged on a single weak spot: a “phantom” message tricked the bridge into releasing rsETH on Ethereum without taking the equivalent tokens off another layer‑2 network. This mismatch allowed attackers to create a large amount of fake rsETH, which they then used as collateral on Aave. In the aftermath, some in the community have tried to find solutions. Crypto entrepreneur Justin Sun offered to negotiate with the attackers, arguing that they would eventually struggle to spend the stolen tokens. Meanwhile, researchers emphasize that such incidents highlight the risks of code‑only financial systems and the need for stronger safeguards against single points of failure. The Kelp DAO hack and its ripple effects have given critics more ammunition to question whether decentralized finance can truly replace traditional intermediaries. The incident also serves as a stark reminder that even well‑established platforms like Aave can be vulnerable when they rely on external bridges and complex cross‑chain protocols.