#layerzero v2

The post Aave Claws Back From $292M rsETH Exploit With $300M Coalition appeared on BitcoinEthereumNews.com. Aave’s post mortem details how a forged cross-chain message triggered a $292M rsETH exploit and how a $300M DeFi coalition restored full backing. The attacker was already gone by the time anyone realized the bridge had lied. On April 18, at 17:35 UTC, Kelp’s rsETH LayerZero V2 bridge accepted inbound nonce 308 on Ethereum while Unichain still sat at outbound nonce 307. No burn happened. 116,500 rsETH came out of the Ethereum-side adapter as if it had. The LayerZero verifier responsible for signing inbound messages on Ethereum was running on a one-of-one DVN setup. One signer. It was hit by an RPC-poisoning attack that warped its view of source-chain state. The verifier attested to a transaction that never occurred, per Aave’s post mortem published on X. The Borrow Play Nobody Saw Coming Within minutes, seven recipient addresses had the stolen tokens. 89,567 rsETH of it went into

The post Aave Claws Back From $292M rsETH Exploit With $300M Coalition appeared on BitcoinEthereumNews.com. Aave’s post mortem details how a forged cross-chain message triggered a $292M rsETH exploit and how a $300M DeFi coalition restored full backing. The attacker was already gone by the time anyone realized the bridge had lied. On April 18, at 17:35 UTC, Kelp’s rsETH LayerZero V2 bridge accepted inbound nonce 308 on Ethereum while Unichain still sat at outbound nonce 307. No burn happened. 116,500 rsETH came out of the Ethereum-side adapter as if it had. The LayerZero verifier responsible for signing inbound messages on Ethereum was running on a one-of-one DVN setup. One signer. It was hit by an RPC-poisoning attack that warped its view of source-chain state. The verifier attested to a transaction that never occurred, per Aave’s post mortem published on X. The Borrow Play Nobody Saw Coming Within minutes, seven recipient addresses had the stolen tokens. 89,567 rsETH of it went into

Aave’s post mortem details how a forged cross-chain message triggered a $292M rsETH exploit and how a $300M DeFi coalition restored full backing. The attacker was already gone by the time anyone realized the bridge had lied. On April 18, at 17:35 UTC, Kelp’s rsETH LayerZero V2 bridge accepted inbound nonce 308 on Ethereum while […] The post Aave Claws Back From $292M rsETH Exploit With $300M Coalition appeared first on Live Bitcoin News.