$292M Cross-Chain Hack Hits Kelp DAO: The Hidden Compliance Gap KYT Must Solve

KelpDAOcross-chain bridgeDeFi hackKYTAMLblockchain securityTornadoCashrisk monitoring

Inside the $292M Kelp DAO Exploit

On April 19, on-chain data revealed that an attacker exploited Kelp DAO’s LayerZero-based bridge, stealing approximately 116,500 rsETH—worth around $292 million. The exploit was executed by invoking the lzReceive function on the LayerZero EndpointV2 contract, which triggered the bridge to release funds to an attacker-controlled address. Investigations show the attacker’s wallet was funded via Tornado Cash.

Why Tornado Cash Funding Signals High Risk

The attacker sourced initial funds through Tornado Cash, a known mixing service often associated with high-risk transactions. While mixers obscure transaction trails, advanced transaction monitoring can still identify suspicious patterns and address linkages. This highlights the limitations of reactive analysis and the need for real-time risk detection.

Cross-Chain Bridges as a Growing Attack Surface

Cross-chain bridges remain a prime target due to their complex logic and multi-chain interactions. In this case, the attacker exploited message execution mechanisms, exposing weaknesses in validation and access control. As multi-chain ecosystems expand, these vulnerabilities are becoming increasingly critical.

How KYT Helps Detect Threats Before They Escalate

Traditional KYC alone cannot address transaction-level risks. KYT (Know Your Transaction) enables continuous monitoring of on-chain activity, detecting abnormal fund sources such as mixer-linked inflows. With Trustformer KYT, platforms can implement dynamic risk scoring and flag suspicious transactions in real time, helping prevent exploits before they unfold.

Building Resilient Compliance for DeFi Platforms

Following the incident, Kelp DAO suspended affected contracts and Aave froze rsETH markets, demonstrating how quickly risk can spread across protocols. For DeFi platforms, building auditable, real-time compliance systems is no longer optional. Trustformer KYT provides continuous fund flow tracking and risk intelligence, enabling platforms to reduce exposure and strengthen their security posture in an evolving threat landscape.

About Trustformer

Trustformer is a leading blockchain security and compliance technology company specializing in providing professional risk management and compliance solutions for the global cryptocurrency ecosystem. We have developed the cutting-edge Trustformer KYT (Know Your Transaction) platform, which integrates artificial intelligence, blockchain analytics, and regulatory technology to deliver comprehensive, accurate real-time transaction monitoring, risk assessment, and suspicious activity reporting services.

With deep industry expertise and technological innovation, Trustformer is dedicated to helping Virtual Asset Service Providers (VASPs), crypto financial institutions, and investors build a safer and more transparent crypto financial environment. We believe that driving compliance and trust through technology can contribute to the thriving growth of the global digital economy.