Kelp DAO claims LayerZero’s 'default' settings are what actually caused the massive $290 million disaster
Kelp DAO disputes LayerZero's blame for a $290M exploit, stating LayerZero's default settings were the cause.Summary
Kelp DAO is pushing back against LayerZero's post-mortem of a $290 million exploit, asserting that LayerZero's own default infrastructure and settings, not Kelp's choices, led to the disaster. Kelp claims the compromised verifier was LayerZero's infrastructure, and the "1/1 configuration" that was faulted was LayerZero's onboarding default, also present in its quickstart guides and used by a significant portion of protocols on LayerZero. Kelp argues that LayerZero provided no specific recommendations to change this configuration, and that its core contracts remain secure, with the exploit confined to the bridge layer. Security researchers and developers have also questioned LayerZero's framing, suggesting the company is deflecting responsibility for its compromised infrastructure.
(Source:CoinDesk)