Cross-chain bridge hack steals $300M in major DeFi exploit

A cross-chain bridge hack has led to nearly $300 million in losses, marking one of the biggest DeFi incidents of the year. Attackers targeted a bridge connected to Kelp DAO and built on LayerZero infrastructure.

The breach highlights ongoing risks tied to systems that connect multiple blockchains.

Attack drained over 116,000 rsETH tokens

Hackers stole roughly 116,500 rsETH tokens, linked to liquid restaking. The total value reached close to $292 million at the time of the attack.

Kelp DAO allows users to deposit assets and receive rsETH in return. This makes the protocol an important part of the broader DeFi ecosystem.

The scale of the theft shows how much value these systems now hold.

Bridge layer exposed a critical weakness

The attack focused on the bridge mechanism used to transfer assets across networks. This layer handles communication between blockchains and introduces additional complexity.

Instead of targeting the assets directly, attackers exploited this connection point. This allowed them to bypass safeguards and move funds quickly.

Bridges remain attractive targets because they manage high-value transfers across ecosystems.

DeFi bridges continue to face pressure

This incident follows a pattern seen across previous attacks. Bridge systems often rely on complex validation logic and large liquidity pools.

These factors increase risk. Even minor flaws can result in major losses.

Security challenges around bridges continue to raise concerns across the industry.

One of the largest incidents of 2026

The cross-chain bridge hack stands among the biggest DeFi exploits reported this year. Its scale adds pressure on developers to strengthen security measures.

Investigations are ongoing, but the incident already highlights weaknesses in current designs.

Conclusion

The cross-chain bridge hack shows how interconnected systems increase exposure to risk. As DeFi continues to expand, attackers are focusing on high-value infrastructure.

Developers must improve validation processes and monitoring across bridge layers. Stronger safeguards are essential to prevent similar large-scale breaches.