Aave (AAVE) experienced one of the largest stress events in decentralized finance history after an exploit involving rsETH tokens from the Kelp DAO protocol triggered massive capital outflows. The price of AAVE dropped 18% in 25 hours, falling from $112 to $88.62, while total deposits on the platform collapsed by $15.1 billion over three days, according to data from EmberCN and CoinDesk.
The exploit began when attackers used 116,500 stolen rsETH tokens as collateral on Aave V3 to borrow wrapped Ether, creating approximately $195 million in bad debt for the protocol. Bloomberg confirmed that the hack triggered emergency market freezes across Aave, SparkLend, Fluid, and multiple other DeFi platforms. Aave's total value locked dropped from $48.5 billion to $30.7 billion, a reduction of roughly one-third. The WETH markets hit 100% utilization as liquidity dried up.
While Aave suffered the most severe impact, capital rotated to other protocols. SparkLend saw its TVL surge by $1.3 billion, from $1.9 billion to $3.2 billion, as large investors, including Justin Sun, moved funds to what they perceived as safer alternatives. Meanwhile, Morpho also experienced a $1.5 billion decline in deposits, from $11.7 billion to $10.2 billion, reflecting broader market unease.
The event underscores systemic vulnerabilities in DeFi lending protocols that rely on cross-chain bridge infrastructure. The rsETH exploit exploited a bridge vulnerability, not a flaw in Aave's core smart contracts. However, accepting rsETH as collateral exposed Aave to an external failure it could not control. Security experts emphasize that DeFi protocols must prioritize rigorous auditing, formal verification, and real-time monitoring to prevent similar incidents.
The Aave price recovery to pre-exploit levels depends on the return of deposits and resolution of bad debt, a process that could take months. Meanwhile, the incident has reignited debates about the safety of DeFi lending models and the importance of insurance mechanisms and diversified risk management.
