Judgment of Exclusion of Stolen Money
The Arbitrum Security Council has taken unprecedented steps to lock up the stolen wealth. In the operation late at night April 20, 2026, 11:26 PM ETThe council took a technical approach to stop it 30,766 ETH– its price approx $71 million.
The money comes from the latest KelpDAO uses it. The application didn’t just drain KelpDAO; caused Aave’s revenue to skyrocket, threatening the stability of the Ethereum protocol’s rental pools.
Time of Cold
- April 18, 2026: The KelpDAO bridge vulnerability is exploited, resulting in a loss of approximately $292 million.
- April 19-20, 2026: The stolen money is tracked and passed through the Arbitrum One network.
- April 20, 2026 (11:26 PM ET): The Security Council recognizes the attacker’s address and conducts emergency operations.
- April 21, 2026: Arbitrum ensures that the funds are properly segregated in the “fifth arbitration bag.”
The ‘North Korea’ Connection and Law Enforcement
In an indication of the seriousness of the situation, the Security Council has confirmed that the action is supported by significant information from the law enforcement agencies. Emerging evidence shows the impact of North Korea’s state-sponsored playersespecially a The Lazarus Groupwhich has a reputation for targeting DeFi bridges.
The council used its emergency powers to prevent this money from being wasted or advanced. Excluding the goods, the Council has “recorded” about 25% of the total amount stolen, which gives a lot of hope that it will be recovered.
Technical Use: More Accuracy in Unlicensed Content
A major concern with the implementation of any protocol is the risk of collateral damage. However, the Security Council emphasized that this was a surgery surgery.
“The council identified and implemented a strategic approach to move funds to security without affecting any other government or Arbitrum users.”
ETH was moved to a central wallet. This bag is closed in order; The primary address of the plot is no longer privileged. Most importantly, these funds cannot be transferred without a policy Vote for the Authority Decisionputting the ultimate future of $71 million in the hands of ARB token holders.
The Centralization Paradox: Is “DeFi” Just Marketing?
This event has brought back the oldest controversy in crypto: Can blockchain really be distributed if its assets can be extinguished?
For years, users believed that “Your Keys, Your Money” was the standard rule. However, KelpDAO’s intervention ensures that on a Layer 2 network like Arbitrum, your keys are only as strong as the “rooms” of the code allow. We’ve seen this before with USDC—where Circle can block any address—but now we’re seeing it with Ethereum itself on the main L2.
The unfortunate truth is that most of what is marketed as “Decentralized Finance” currently works with centralized security. When emergency powers are used to freeze ETH, the line between crypto protocol and traditional banking begins to blur. The “permissionless” nature of blockchain is effectively stopped when a small group thinks that the “wrong” person is holding the money.
Who Really Prevents the Cold?
The Arbitrum Security Council is an organization of 12 elected members who have 9-of-12 multi-signature wallet keys. These members are elected by the DAO every six months, but during their tenure, they have the power to suddenly upgrade or shut down assets without a public vote.
Although these members are supposed to represent the interests of ARB shareholders, the decision-making process during an “emergency” is unclear.
- Who decides what is considered an emergency?
- Which law enforcement agencies are providing “inputs” that lead to blackouts?
- Whose interests are being protected, readers or protocol history?
