Kelp DAO $220M Hack Laundered, Recovery Window Shuts as Only $1.7M Remains Traceable

The window for tracing and recovering more than $220 million stolen from Kelp DAO’s bridge has all but closed. On-chain tracking data laid out in the original report shows that the North Korean threat group TraderTraitor has now laundered nearly every dollar of previously unfrozen funds, using a chain of privacy-focused platforms. Only around $1.7 million remains in the hackers’ original wallets, effectively ending any realistic prospect of direct, transaction-by-transaction asset recovery.

The speed and scale of the operation underscore a growing structural problem for DeFi bridges. Kelp DAO, an Ethereum-based restaking protocol, was hit by an exploit that exposed users to losses on par with some of the largest cross-chain breaches. The cleaning process moved assets through THORChain, Wasabi, Tornado Cash, and Umbra—a stack of mixing tools and cross-chain liquidity networks that make on-chain tracing extremely difficult. It also raises urgent questions about what, if anything, can still be done to disrupt the flow of funds into the hands of a state-sponsored unit already sanctioned by the U.S. for funding weapons programs.

How the $220 million disappeared

The laundering did not rely on a single method. THORChain, a decentralized cross-chain liquidity protocol, let the attackers move assets between blockchains without requiring wrapped tokens or custodial bridges. Wasabi and Umbra added coinjoin-style privacy layers for Bitcoin and Ethereum, while Tornado Cash—already designated by OFAC—was used to break on-chain links further. Such a combination is not new, but the fact that it was executed by a group tied to the Lazarus umbrella shows the operational sophistication that regulated industry participants are up against.

Ethereum remains the most active chain by developer count, as recent activity data confirms, but its open composability is a double-edged sword. The same infrastructure that powers liquid staking and restaking can be exploited when bridge contracts are not airtight. For Kelp DAO users, the near-total movement of unfrozen funds marks a point of finality that few in the community wanted to accept this early.

The North Korea factor and regulatory friction

TraderTraitor is one of several aliases linked to North Korean cyber teams that the U.S. Department of the Treasury and the FBI have identified as instrumental in stealing billions in crypto over the past few years. These operations are not ordinary hacks; they are viewed by intelligence agencies as a direct source of hard currency for Pyongyang’s sanctions-evasion apparatus. Every dollar that disappears into these laundering pipelines ends up beyond the reach of civilian recovery efforts and, often, beyond swift law enforcement intervention.

The laundering closes a chapter on traceability just as Washington lawmakers wrestle with the shape of future crypto oversight. A landmark bill that would set new rules for digital asset markets is now under fresh attack from the banking lobby, as reported in the legislative drama unfolding in the Senate. While legislative fights play out over market structure, hacks like the one at Kelp DAO continue to expose the gap between enforcement ambition and on-the-ground capability.

What remains uncertain

Despite the closure of the direct tracing window, law enforcement and blockchain intelligence firms retain options, though they are limited. Funds that eventually hit centralized exchanges can be frozen if they are flagged in time, but the combination of THORChain swaps and mixing layers makes that a high-effort, low-probability endeavor. Some portion of the stolen value may already be outside any cooperative jurisdiction.

For DeFi protocols building bridges and restaking layers, the episode is a harsh reminder that recovery design must be baked into the earliest stages of smart contract architecture. Post-exploit freezes and negotiation, as seen in other incidents, did not produce a meaningful outcome here. The industry will be watching whether the remaining $1.7 million can yield any final intelligence—or whether it, too, will slip into the same opaque channels that swallowed the other 99.2 percent of the haul.