Rewards Hub 
Aave absorbed $196 million in bad debt after the Kelp rsETH exploit in April 2026, and its total value locked dropped $6.6 billion in the aftermath. Compound froze its rsETH markets the same day but walked away with zero bad debt. MakerDAO, operating an entirely different lending model, was never exposed in the first place.
Three protocols, three different outcomes from the same exploit. The differences come down to architecture, collateral policy, and how each protocol handles the moment when things go wrong. If you have capital deployed in DeFi lending, the safety mechanisms behind each protocol matter more than the APY they advertise.
What Happened With the Kelp Exploit
Kelp DAO's rsETH, a liquid restaking token built on EigenLayer, suffered a price manipulation exploit in early April 2026 that caused its value to depeg sharply from ETH. Attackers exploited a vulnerability in Kelp's oracle pricing mechanism, allowing them to borrow against inflated rsETH collateral across multiple DeFi protocols before the price corrected.
Aave took the worst hit because it had listed rsETH as collateral across several of its markets, including pools on Ethereum mainnet. When rsETH crashed, borrowers who had deposited rsETH and borrowed stablecoins or ETH against it were instantly underwater. The protocol's liquidation engine could not clear the positions fast enough, and $196 million in bad debt accumulated before Aave governance froze the affected markets.
Compound also had rsETH exposure but froze its markets faster and had less total rsETH collateral listed. The result was no bad debt. MakerDAO never listed rsETH as an accepted collateral type in its vaults, so the exploit had zero direct impact on DAI or any Maker position.
How Aave's Safety Net Works
Aave's primary defense against bad debt is the Umbrella safety module, built around stkAAVE (staked AAVE). Token holders can stake their AAVE into the safety module and earn yield for acting as a backstop. If the protocol accumulates bad debt that exceeds its reserve fund, the safety module can slash up to 30% of staked AAVE to cover the shortfall. The slashed tokens get auctioned on the open market and the proceeds fill the gap.
This is the model being tested right now. The $196 million hole is the largest bad debt event in Aave's history, and the safety module's ability to cover it will define market confidence in the protocol going forward. Aave has handled smaller incidents before. In November 2023, a CRV market manipulation attempt left the protocol with roughly $1.6 million in bad debt, which was covered by treasury reserves without touching the safety module. The scale this time is different by two orders of magnitude.
Aave governance moved within hours to freeze rsETH markets and began discussions on a recovery plan. The protocol's governance speed is one of its strengths. Emergency proposals can be executed within 24 hours through the guardian multisig, and standard proposals go through a 5-day voting period with a 2-day timelock.
But the Kelp incident exposed a real vulnerability. Aave lists more exotic collateral types than any other major lending protocol. That diversity drives higher TVL and more lending activity, but it also increases the surface area for exactly this kind of event.
How Compound Handled the Same Exploit
Compound's response to the Kelp exploit was simpler because its exposure was simpler. The protocol froze rsETH markets quickly and suffered no bad debt. That outcome is partly luck, partly design.
Compound has historically been more conservative about which assets it accepts as collateral. Its governance has resisted listing newer, less battle-tested tokens, and the protocol's architecture is designed around a smaller number of high-liquidity markets rather than Aave's broader approach. Compound III (the current version) moved to isolated lending markets where each borrowing position is collateralized against a single asset, reducing contagion risk between pools.
The trade-off is clear. Compound's conservative collateral policy means lower TVL and fewer lending options for users. But when an exotic collateral type blows up, Compound's smaller exposure means less damage. There is no insurance fund equivalent to Aave's safety module. Compound relies on liquidation incentives and conservative listing standards as its primary defense, plus a reserve fund that accumulates from protocol fees.
Compound governance is slower than Aave's. Proposals require a 2-day voting delay, 3-day voting period, and 2-day timelock before execution. For emergencies, the guardian multisig can pause markets, which is what happened during the Kelp incident.
Why MakerDAO Was Never Exposed
MakerDAO (now rebranded to Sky) operates a fundamentally different lending model. Instead of pool-based lending where depositors supply assets and borrowers take them out, Maker uses collateralized debt positions (CDPs). Users deposit collateral into a vault and mint DAI (or USDS under the Sky rebrand) against it. There is no pool of depositor funds at risk. The protocol creates new stablecoins backed by over-collateralized vaults.
This architectural difference is why Kelp's rsETH exploit never touched Maker. The protocol's collateral onboarding process is one of the most rigorous in DeFi. New collateral types go through a multi-week risk assessment that evaluates oracle reliability, liquidity depth, smart contract audit history, and worst-case liquidation scenarios. rsETH never passed that process, which is exactly why Maker had zero exposure when the exploit hit.
Maker's ultimate backstop is the emergency shutdown mechanism. If the protocol ever becomes insolvent or faces a catastrophic oracle failure, MKR governance can trigger an emergency shutdown that freezes all new vault creation, allows existing vault holders to reclaim excess collateral, and redeems DAI at a fixed rate against the system's remaining collateral. This has never been triggered on mainnet, but it exists as a nuclear option that pool-based lenders do not have.
The MKR token also serves as a last-resort recapitalization tool. If liquidation auctions fail to cover bad debt, the protocol mints new MKR tokens and sells them to cover the gap. This dilutes existing MKR holders but preserves DAI's peg. It happened during the March 2020 "Black Thursday" crash when ETH dropped 43% in one day and Maker accumulated $6.65 million in bad debt from failed liquidations.
Safety Feature Comparison
Feature | Aave | Compound | MakerDAO/Sky |
Lending model | Pool-based (supply/borrow) | Pool-based (isolated markets) | CDP (mint stablecoins against collateral) |
Insurance mechanism | Umbrella safety module (stkAAVE backstop) | Reserve fund from protocol fees | MKR dilution + emergency shutdown |
Collateral policy | Aggressive (50+ asset types) | Conservative (fewer, high-liquidity assets) | Very conservative (multi-week risk process) |
Emergency governance speed | Guardian can act within 24 hours | Guardian can pause markets immediately | Executive vote with governance delay |
Kelp exploit impact | $196M bad debt, $6.6B TVL drop | Zero bad debt (froze markets) | Not exposed (rsETH not listed) |
Historical bad debt events | CRV 2023 ($1.6M), Kelp 2026 ($196M) | Minor incidents only | Black Thursday 2020 ($6.65M) |
Oracle system | Chainlink primary | Chainlink primary | Custom oracle module with 1-hour delay |
Liquidation model | Dutch auction with bonus incentives | Fixed incentive liquidation | Collateral auctions with keeper bots |
The table shows a clear pattern. More aggressive collateral listings generate higher TVL and more fee revenue during normal operations, but they create larger tail risks when a listed asset fails. Conservative listings sacrifice growth for resilience.
Which Model Is Actually Safer for Depositors
The answer depends on what you are depositing and what risks you are willing to accept.
If you are lending stablecoins on Aave, your risk profile includes every collateral type that borrowers can post against your deposits. When rsETH collapsed, it was stablecoin lenders who faced the possibility of not getting their full deposits back if the safety module cannot cover the gap. The stkAAVE backstop adds a layer of protection that Compound does not have, but the $196 million test is still playing out.
Compound depositors face lower tail risk because the protocol lists fewer exotic assets. The isolated market structure in Compound III means a failure in one market does not spread to others. But there is no dedicated insurance fund beyond the reserve, so if a large enough bad debt event hits Compound directly, depositors would absorb losses.
Maker vault users face a different risk entirely. Your DAI is not at risk from other vaults failing. Your personal risk is liquidation of your own vault if your collateral value drops below the minimum ratio. And the emergency shutdown mechanism provides a system-level protection that neither Aave nor Compound offers. The trade-off is that you cannot earn lending yield on Maker the way you can by supplying assets to Aave or Compound pools.
What Aave's Recovery Tells Us About DeFi Risk
The way Aave handles the $196 million gap will set a precedent for the entire DeFi lending sector. If the safety module covers it cleanly, the stkAAVE backstop model gets validated as a functional insurance mechanism and Aave's aggressive collateral listing strategy remains viable. If it requires a governance bailout, treasury depletion, or token dilution beyond what stkAAVE can absorb, the market will reprice how much risk DeFi lending actually carries.
Aave's governance forum discussions since the exploit suggest the community is moving toward stricter collateral listing requirements for liquid restaking tokens and LRT derivatives. Several proposals recommend implementing supply caps, isolated collateral modes, and mandatory oracle delay periods for any asset that derives its value from another protocol's smart contracts. These changes would make Aave more like Compound's conservative approach for high-risk asset categories while keeping its broader market offerings for established tokens.
The broader lesson is that DeFi lending protocols are only as safe as their weakest collateral type. A protocol can have perfect smart contract code, fast governance, and a well-funded insurance module, and still take massive losses because it listed the wrong asset.
Frequently Asked Questions
Is Aave safe to use after the Kelp exploit?
Aave's core protocol and smart contracts were not compromised. The bad debt came from a listed collateral type (rsETH) losing value, not from a hack of Aave itself. The safety module exists specifically to cover situations like this, and the protocol has handled smaller incidents before. The open question is how much of the $196 million loss the stkAAVE backstop can actually absorb.
What is the difference between Aave and MakerDAO?
Aave is a pool-based lending protocol where users deposit assets and others borrow them, similar to a bank. MakerDAO lets users lock collateral in vaults and mint DAI stablecoins against it. The key safety difference is that Maker vault users are only exposed to their own collateral risk, while Aave depositors share risk across all collateral types in the pool.
Does Compound have an insurance fund?
Compound does not have a dedicated insurance module like Aave's stkAAVE backstop. It relies on a reserve fund that accumulates from protocol fees and on conservative collateral listing policies to minimize the need for one. The Compound III isolated market design also limits contagion between different lending markets.
Which DeFi lending protocol has the lowest risk?
MakerDAO's CDP model carries the lowest systemic risk for stablecoin users because vault holders are only exposed to their own collateral, and the emergency shutdown mechanism provides a last-resort protection. For yield-seeking lenders who want to supply assets and earn APY, Compound's conservative listing approach and isolated markets offer lower tail risk than Aave's broader collateral menu.
Bottom Line
The Kelp exploit did what stress tests are supposed to do. It revealed exactly where each protocol's defenses hold and where they break. Aave's aggressive collateral strategy generated the highest TVL in DeFi lending but also absorbed the largest single bad debt event in the sector's history. Compound's conservative approach sacrificed growth for resilience and walked away clean. MakerDAO's entirely different architecture meant the exploit was never relevant to begin with.
For depositors choosing where to park capital, the question is not which protocol has the best APY but which protocol's worst-case scenario you can live with. Watch Aave's governance over the next two to four weeks for the stkAAVE slashing vote and recovery plan. If the safety module absorbs the full $196 million without breaking the peg between stkAAVE coverage and outstanding risk, it validates the insurance model for the next cycle. If it falls short, expect capital rotation toward Compound and Maker as depositors reprice tail risk across DeFi lending.
This article is for informational purposes only and does not constitute financial or investment advice. Cryptocurrency trading involves substantial risk. Always conduct your own research before making trading decisions.
