An active exploit on the Verus-Ethereum Bridge has resulted in $11.58 million in losses, according to security firm Blockaid.

Kelp DAO has burned the attacker's rsETH tokens and outlined a recovery plan to refill liquidity through Aave's Recovery Guardian multisig before resuming withdrawals.

Wasabi Protocol is the latest victim in what appears to be a record bad month for DeFi hacks.

In a detailed incident report, Aave service providers quantified the protocol's exposure for the first time and outlined two scenarios depending on how Kelp DAO allocates the loss. LayerZero and Kelp continue to blame each other for the compromised bridge configuration.

North Korea's Lazarus Group exploited a single-verifier LayerZero setup to drain $290M in rsETH on April 18 by compromising RPC infrastructure and poisoning the bridge's data feeds.

Law firm charges Circle Internet Financial with failing to freeze $230 million in stolen USDC after the April 1 Drift Protocol exploit, allegedly linked to North Korean attackers.

The attacker exploited a vulnerability in Polkadot interoperability protocol Hyperbridge, minting over ~$2 billion in DOT and other tokens, but was only successfully able to cash out about $237K.

The Resolv hack wasn't a surprise. The same structural flaw has drained hundreds of millions from Morpho, Euler, and Fluid over the past year and the industry kept building on top of it anyway.

An attacker has successfully exploited the Resolv USR stablecoin protocol, minting 80 million tokens and withdrawing at least $25 million before the depeg.

A threat actor bypassed Venus Protocol's supply caps using Thena tokens to borrow multiple assets in what analysts suspect was a flash loan or price manipulation attack on BNB Chain.