A Dune Analytics review of 2,665 LayerZero OApp contracts, published April 20 in the aftermath of the KelpDAO exploit, found that 47 percent rely on single-verifier DVN configurations. This means nearly half of applications built on LayerZero share the same architectural vulnerability that allowed Lazarus Group to drain $290 million in rsETH by compromising one RPC node. The finding suggests the KelpDAO hack was not an edge case but a systemic exposure across a widely used cross-chain messaging layer.
For Armada's crypto desk, this data materially broadens the risk perimeter. Any collateral token that relies on LayerZero for bridging, price feeds, or redemption pathways must now be treated as potentially impaired until individual OApp configurations are verified as multi-DVN. Armada should instruct its risk team to cross-reference current and pipeline collateral assets against the Dune dataset and apply a blanket ineligibility presumption for LayerZero-bridged assets pending counterparty attestation of upgraded security configurations.