STATE-LEVEL HACK SHOCK: LAZARUS LINKED TO $292M DEFI EXPLOIT VIA CROSS-CHAIN MANIPULATION! 🚨💣
📊 LayerZero has linked the massive $292M KelpDAO exploit to the DPRK-backed Lazarus Group — one of the most sophisticated cyber actors globally 👀
🪙 The attack targeted rsETH, triggering one of the largest DeFi hacks of 2026
💥 HOW THE ATTACK WORKED:
🧠 Hackers poisoned RPC nodes feeding data to verification systems
⚡ Forced the system to trust malicious nodes via DDoS failover
🧾 Injected forged cross-chain messages
💸 Minted and drained ~116,500 rsETH (~$292M) without real backing
📊 CRITICAL WEAKNESS:
⚠️ KelpDAO used a single verifier (1-of-1 setup)
❌ No redundancy = single point of failure exploited
🧠 WHY THIS IS HUGE:
🌐 Attack didn’t break smart contracts — it targeted infrastructure (RPC layer)
🔗 Shows cross-chain systems can be manipulated at the data level
🏦 Exploit cascaded into DeFi protocols like Aave
⚠️ Highlights rising role of state-backed cyber warfare in crypto
💡 KEY INSIGHT:
This wasn’t a typical hack — it was a precision infrastructure attack, proving that even “secure” systems can fail if data sources are compromised
🔥 The game is changing: hackers are no longer just attacking code — they’re attacking how blockchains read reality
📢 When verification fails, everything built on top becomes vulnerable
👇 What’s your take?
⚠️ Is DeFi entering a new era of state-level threats?