KelpDAO hack and Drift exploit drain $650M in April
CertiK says crypto exploits and incidents in April 2026 cost more than $650M. Two events drove nearly all the damage: the KelpDAO hack ($292M) and the Drift Protocol exploit ($285.2M), together close to $600M.
Drift Protocol was breached after weeks of preparation and months of social engineering to reach protocol signers. Funds were drained in about 12 minutes.
The KelpDAO hack traced to a single-verifier flaw in a LayerZero bridge. More than $70M was frozen on Arbitrum before the stolen assets were rerouted via THORChain. The pattern echoes traders’ focus on KelpDAO hack and Drift exploit tail risk across DeFi.
Smaller losses included Rhea Finance ($18.4M) and Grinex ($16.2M). By sector, DeFi accounted for $609.3M. By category, wallet compromises led with about $611M, while phishing and code vulnerabilities were smaller.
TRM Labs attributes 76% of 2026 hack losses (through April) to North Korean groups—fewer attacks, higher impact. Analysts also suspect more AI-assisted reconnaissance and social engineering.
For traders, the KelpDAO hack and Drift exploit increase near-term risk-off pressure for DeFi, bridges, and custody/signing infrastructure, which can tighten liquidity and weigh on DeFi TVL during incident fallout.
Bearish
Short term: Two mega-incidents (KelpDAO hack and Drift exploit) are likely to trigger risk-off positioning. Traders may rotate away from DeFi and bridge-linked liquidity due to heightened tail-risk perception, increasing withdrawal pressure and widening risk controls.
Medium term: North Korea-related, higher-impact attacks (fewer but larger) support sustained negative sentiment. If wallet-compromise risk and signer/custody weaknesses remain headline drivers, protocol-level uncertainty can keep funding and TVL under pressure.
Long term: While improved incident response (e.g., freezes) may reduce recovery time, the news reinforces that bridge and signing infrastructure remain systemic weak points. Unless mitigations and audits translate into measurable risk reduction, markets may keep discounting DeFi risk, weighing on token performance tied to activity and liquidity.