Aave rewrites the rulebook for asset listings after $293 million exploit
Aave is expanding its asset listing criteria to include cybersecurity following a major $293 million KelpDAO exploit.Summary
Following a massive $293 million exploit involving KelpDAO's rsETH token, Aave Labs is fundamentally restructuring its collateral assessment framework. Linda Jeng, Chief Legal and Policy Officer at Aave Labs, announced at Consensus Miami 2026 that the protocol will move beyond purely financial risk metrics to incorporate evaluations of cybersecurity, interoperability, and underlying asset architecture.
The exploit occurred when an attacker manipulated KelpDAO's cross-chain bridge to mint unbacked rsETH, which was then used as collateral on Aave to borrow wrapped ether. To prevent future occurrences, Aave plans to publish a formal playbook of minimum standards for asset issuers and will shift its focus toward analyzing systemic interconnections between different DeFi protocols.
Unlike the 2008 financial crisis which required government bailouts, this crisis was addressed through a community-led initiative called "DeFi United." This ecosystem-wide response, involving major players like Lido, EtherFi, and Ethena, worked to cover collateral shortfalls and contain systemic bad debt.
(Source:CoinDesk)