Hacker’s Wild Ride: $300M, 3 Blockchains, and a Dash of macOS Malware

by

Oh, darling, buckle up! The mastermind behind KelpDAO’s jaw-dropping $300 million rsETH heist is on a blockchain tour, hopping from Ethereum to Arbitrum, and finally crashing the Tron party with USDT. Because why stick to one chain when you can leave a trail messier than my love life?

  • Our mystery thief is shuffling $300 million like it’s a game of crypto musical chairs-Ethereum, Arbitrum, Tron. Next stop? Who knows, maybe they’ll start an NFT collection called “Stolen Assets: The Series.”
  • Wall Street’s blockchain dreams are now on pause, thanks to this little fiasco. Guess they’re realizing “decentralized” doesn’t always mean “drama-free.”
  • And just when you thought it couldn’t get worse, enter MacSync Stealer-the macOS malware that’s here to drain your crypto wallet faster than a bad date drains your enthusiasm.

So, the KelpDAO bandit is basically playing blockchain Jenga, stacking funds across networks like it’s a high-stakes game of “Will anyone notice?” Spoiler: Everyone noticed. Especially the poor souls trying to trace this mess.

#PeckShieldAlert The @KelpDAO exploiter bridged $ETH from #Ethereum to #Arbitrum via @AcrossProtocol, swapped for $USDT0, and subsequently routed funds to @trondao via @LayerZero_Core. Because nothing says “I’m a pro” like a multi-chain money laundering scheme.

– PeckShieldAlert (@PeckShieldAlert) April 22, 2026

On-chain sleuths are having a field day watching this crypto Houdini jump through hoops-bridging, swapping, and diving into Tron like it’s the world’s dodgiest amusement park. All to make the audit trail look like a toddler’s doodle.

Wall Street analysts are clutching their pearls, warning that this $293 million fiasco might make banks rethink their blockchain crush. Turns out, “cross-chain bridges” and “single-validator setups” are just fancy ways of saying “disaster waiting to happen.”

Andrew Moss from Jefferies dropped the mic: “This exploit? It’s the cold shower Wall Street didn’t know it needed.” Ouch. But hey, at least stablecoins for cross-border payments are still a thing. Silver linings, people.

DeFi Drama and Institutional Jitters

The April 18 heist swiped 116,500 rsETH-a cool $290-$293 million-making it 2026’s biggest DeFi flop so far. LayerZero’s like, “It’s not us, it’s KelpDAO’s 1-of-1 verifier setup!” And KelpDAO’s like, “We just followed your defaults, dude!” Classic blockchain blame game.

Meanwhile, investors yanked $15 billion from DeFi faster than I ghost a bad Tinder match. Turns out, bridges and validators are the new “systemic risk.” Who knew?

Oh, and North Korean hackers? They’ve snagged $600 million this quarter alone. KelpDAO’s just the latest episode in their “Crypto Heist Chronicles.” Institutional investors are officially spooked.

MacSync Stealer: The macOS Menace

As if the day couldn’t get more thrilling, SlowMist drops a bombshell: MacSync Stealer (v1.1.2) is on the loose, targeting crypto wallets like a digital pickpocket. It’s got a taste for browser creds, system keychains, and even AWS keys. Classy.

SlowMist’s advice? “Don’t run random macOS scripts, and don’t fall for fake AppleScript pop-ups.” Basically, treat your Mac like you’d treat a suspicious email from a Nigerian prince.

So here we are: DeFi bridges getting hacked, macOS malware running wild, and Wall Street questioning its blockchain fling. Crypto’s attack surface is suddenly as wide as my eyes when I see a bill after a night out. Cheers to another day in paradise!

Read More

2026-04-22 16:06