Aave announced on April 21 on the X platform that the WETH reserves in the Ethereum Core V3 market have been unfrozen, and users can supply WETH back to Ethereum Core V3; the WETH loan-to-value ratio (LTV) remains at 0. WETH reserves on Ethereum Prime, Arbitrum, Base, Mantle, and Linea remain frozen.
Aave April 21 freeze-and-unfreeze status
According to an X-platform announcement published by Aave on April 21, 2026, rsETH remains frozen on Aave V3 and V4. The current status of the WETH reserves is as follows:
Unfrozen: WETH reserves in the Ethereum Core V3 market (WETH LTV still 0)
Still frozen: WETH reserves on Ethereum Prime, Arbitrum, Base, Mantle, and Linea
April 19 KelpDAO rsETH attack: Event timeline
According to public reports, on April 19, 2026, Kelp DAO’s rsETH cross-chain adapter was attacked. By exploiting a bridging vulnerability, the attacker abnormally minted 116,500 rsETH (valued at about 293.7 million USD, roughly 18% of the token’s total circulating supply), and deposited it into the Aave V3 and V4 markets in less than 90 minutes, causing what is reportedly the largest indirect loss in Aave’s history, about 200 million USD. The Aave team subsequently froze the ability to borrow and supply rsETH on the Ethereum mainnet, as well as on layer-2 networks such as Arbitrum and Optimism, and urgently set the rsETH LTV to 0.
Market impact: TVL and token price data
According to DefiLlama data, Aave TVL fell from 26.3 billion USD to 18.0 billion USD over the two days from April 19 to April 20, evaporating 8.3 billion USD in two days, a drop of more than 31%. According to Lookonchain monitoring, Abraxas Capital withdrew 392 million USD, MEXC withdrew 431 million USD, and the whale 0x7CD0 withdrew 405.7 million USD. According to Bitget market data, the AAVE token price fell from about 114 USD before the attack to about 93 USD on April 20; the USDT borrowing APY briefly rose to 14.99%, while the deposit APY reached 13.39%.
Statements from various parties
In an April 20 community AMA, Aave founder Stani said that Aave’s core contracts had not been breached; this incident is “upstream contamination” rather than a protocol vulnerability. He said that the protocol’s treasury reserves and monthly average revenue of about 12 million USD are sufficient to cover the losses, and that in the short term it will not activate the security module slash or token issuance.
In an X-platform analysis, DefiLlama founder 0xngmi said that if KelpDAO handles the loss through socialized loss sharing, Aave will incur bad debt of about 216 million USD; Umbrella’s security module can cover 55 million USD, the treasury will also cover an additional 85 million USD, but there will still be a remaining gap of 76 million USD; if KelpDAO sacrifices L2 users, Aave’s bad debt size rises to about 341 million USD.
On the X platform, Curve founder Michael Egorov said that this incident is the risk brought by a “non-isolated lending model,” and pointed out that Aave v4’s centralized, hub-and-spoke model “might be a step toward semi-isolation and a safer direction.”
FAQ
Aave April 21 update: Which WETH markets have been unfrozen, and which remain frozen?
According to an X-platform announcement on April 21, 2026, from Aave, the WETH reserves in the Ethereum Core V3 market have been unfrozen (WETH LTV still 0); the WETH reserves on Ethereum Prime, Arbitrum, Base, Mantle, and Linea remain frozen.
How much impact did this KelpDAO rsETH attack have on Aave TVL?
According to DefiLlama data, Aave TVL fell from 26.3 billion USD to 18.0 billion USD over two days from April 19 to April 20, evaporating 8.3 billion USD, a drop of more than 31%; public reports show that Aave’s indirect loss is about 200 million USD.
What position did Aave founder Stani take regarding the loss response?
According to Stani’s statement in an April 20 community AMA, Aave’s core contracts were not breached, and this incident is “upstream contamination.” He said that the protocol’s treasury reserves and monthly average revenue of about 12 million USD are sufficient to cover the losses, and that in the short term it will not activate the security module slash or token issuance.
Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to
Disclaimer.
Related Articles
DefiLlama Founder: Arbitrum Prioritizing Seized Funds for Aave Market Could Cut Bad Debt by 80%
Gate News message, April 21 — According to DefiLlama founder 0xngmi, if Arbitrum prioritizes using seized funds for the Aave market on Arbitrum, bad debt could be significantly reduced. Under a "loss socialization" scenario, Arbitrum would face no bad debt at all; if rsETH on the L2 faces a
GateNews1h ago
Singapore's MetaComp Launches AI Agent Framework for Financial Compliance and Payments
MetaComp debuts StableX Know Your Agent for regulated AI in payments, combining multi-vendor analytics to slash false clean rates, with AgentX Skills supporting Claude; aims for auditable cross-border finance via downloadable AI Skills.
Abstract: MetaComp introduces the StableX Know Your Agent framework to govern AI agents in regulated payments and wealth management, covering identity, permissions, monitoring, auditing, and agent-to-agent interactions. It reduces false positives by parallel analytics from multiple vendors and enables auditable cross-border finance through downloadable AI Skills (AgentX), starting with Claude support and expansion across regions.
GateNews1h ago
Qivalis Consortium of 12 European Banks Advances Euro Stablecoin Launch for H2 2026
Qivalis, a 12-bank European consortium including BBVA and BNP Paribas, is advancing a euro-stablecoin with a planned H2 2026 launch, backed by Fireblocks for issuance and distribution and Dutch central bank oversight under MiCAR.
Abstract: The Qivalis euro-stablecoin project, backed by 12 European banks and Fireblocks, targets a H2 2026 launch with Dutch central bank oversight under MiCAR, aiming to expand euro-denominated stablecoin use in institutional markets.
GateNews1h ago
OCBC Launches GOLDX Tokenized Gold Fund on Ethereum and Solana
OCBC launches GOLDX, a tokenized physical gold fund on Ethereum and Solana with Lion Global Investors and DigiFT, targeting institutions and Web3 participants; tokenized RWAs reach $29B on chains.
OCBC, with Lion Global Investors and DigiFT, introduced GOLDX, a tokenized version of the LionGlobal Singapore Physical Gold Fund on Ethereum and Solana. The product targets institutional investors and high‑net‑worth individuals, allowing purchases with stablecoins or fiat and delivery to blockchain wallets, providing on‑chain exposure to about $525 million in gold assets. OCBC views GOLDX as a milestone linking traditional finance with the decentralized finance ecosystem to attract Web3 participants. The broader context shows rapid growth in tokenized real‑world assets, with RWAs on public blockchains exceeding $29 billion by mid‑April 2026, while gold prices traded in a tight range around $4,775–$4,831 per ounce.
GateNews1h ago
Ice Open Network suffers a data leak by an insider, and after the ION token plunged, it reorganized to survive
Ice Open Network posted on X on April 20, confirming that a data breach occurred last week. The cause was that after four business partners terminated their business relationship with a third-party service provider, they still accessed external servers, leaking users’ email addresses, 2FA phone numbers, and identity-linked data. The background of this incident is that the ION token had already crashed by 93% two weeks ago, and the project team is in a period of large-scale emergency restructuring.
MarketWhisper3h ago
After XRP is launched, prepare for post-quantum security; complete the XRPL quantum protection roadmap by 2028
Ripple Engineering Senior Director Ayo Akinyele released the latest “Insight” report on April 20, outlining a multi-stage roadmap aimed at ensuring XRP ledgers (XRPL) have fully post-quantum security capabilities by 2028. Ripple is working with Project Eleven to accelerate development, including validating node tests and early custody prototype.
MarketWhisper4h ago
