Wild story unfolding around the KelpDAO hack funds frozen on Arbitrum.
Quick context: in April, Lazarus Group (DPRK-linked) hacked KelpDAO for $292M via a LayerZero bridge bug. Some of the stolen ETH flowed through Arbitrum, and Arbitrum's Security Council froze $71M before the attacker could move it further.
The industry mobilized to recover. Aave, KelpDAO, LayerZero, EtherFi, and Compound co-authored a proposal asking Arbitrum DAO to release the frozen ETH to a multisig that would compensate hack victims. The vote is passing.
Then this week, a plot twist. Lawyers showed up with a restraining order. But not on behalf of the KelpDAO victims.
The plaintiffs are Han Kim and two other groups - family members of people killed in DPRK-backed terrorist attacks years ago. They hold combined ~$877M in unpaid US court judgments against DPRK. North Korea never paid. They have been hunting for any reachable DPRK asset for over a decade.
When Arbitrum's frozen ETH was publicly identified as "DPRK money," they saw a target.
Their argument: this is DPRK property, we have $877M in judgments against DPRK, give us the money.
The counter-argument: DPRK does not actually own this ETH - they stole it. The real owners are the KelpDAO hack victims. The old terrorism creditors are trying to grab money that was never really DPRK's.
Arbitrum is now caught in the middle. The industry wants to release funds for hack recovery. NY court is saying "do not move anything until we resolve this." If multisig signers transfer the ETH while the restraining order is active, they become personally liable.
This is the first real test of DAO funds against competing US court claims. The precedent set here will shape how every future DAO incident response handles legal pressure.
Quick context: in April, Lazarus Group (DPRK-linked) hacked KelpDAO for $292M via a LayerZero bridge bug. Some of the stolen ETH flowed through Arbitrum, and Arbitrum's Security Council froze $71M before the attacker could move it further.
The industry mobilized to recover. Aave, KelpDAO, LayerZero, EtherFi, and Compound co-authored a proposal asking Arbitrum DAO to release the frozen ETH to a multisig that would compensate hack victims. The vote is passing.
Then this week, a plot twist. Lawyers showed up with a restraining order. But not on behalf of the KelpDAO victims.
The plaintiffs are Han Kim and two other groups - family members of people killed in DPRK-backed terrorist attacks years ago. They hold combined ~$877M in unpaid US court judgments against DPRK. North Korea never paid. They have been hunting for any reachable DPRK asset for over a decade.
When Arbitrum's frozen ETH was publicly identified as "DPRK money," they saw a target.
Their argument: this is DPRK property, we have $877M in judgments against DPRK, give us the money.
The counter-argument: DPRK does not actually own this ETH - they stole it. The real owners are the KelpDAO hack victims. The old terrorism creditors are trying to grab money that was never really DPRK's.
Arbitrum is now caught in the middle. The industry wants to release funds for hack recovery. NY court is saying "do not move anything until we resolve this." If multisig signers transfer the ETH while the restraining order is active, they become personally liable.
This is the first real test of DAO funds against competing US court claims. The precedent set here will shape how every future DAO incident response handles legal pressure.
• • •
Missing some Tweet in this thread? You can try to
force a refresh
