LayerZero admits critical security failure in Kelp DAO exploit. The cross-chain messaging protocol acknowledged a serious lapse in its decentralized verifier network setup that allowed hackers to compromise assets. The core issue was a dangerous single-verifier configuration for high-value transfers, creating an unmonitored single point of failure. While only 0.14 percent of deployments were affected, the incident exposed fundamental governance gaps. LayerZero now requires multiple verifiers minimum and is upgrading its RPC infrastructure with stronger safeguards. The company is implementing mandatory security education and monitoring application configurations more actively. Over nine billion dollars have moved safely across the network since mid-April, suggesting the protocol design remains sound despite operational oversights.
