A Manhattan federal judge has approved the movement of approximately 30,766 ETH—valued at around $71 million—from the Arbitrum network to a wallet managed by the Aave decentralized lending protocol. The decision facilitates progress in a large-scale recovery initiative for users impacted by a major exploit while preserving certain legal claims tied to the assets.
The ruling, issued by U.S. District Judge Margaret M. Garnett, modifies an earlier restraining notice served on the Arbitrum DAO.
It specifically permits an on-chain governance vote to relocate the immobilized funds without exposing participants to liability for violating the notice.
Once transferred, Aave LLC has committed to honoring the same restrictions on the assets as if the notice had been directed at them directly.
This development follows the April 18 exploit involving Kelp DAO’s rsETH token, which resulted in substantial losses estimated near $292 million. Industry analysts linked the incident to the Lazarus Group, a cyber operation reportedly connected to North Korea.
In the aftermath, Arbitrum’s Security Council took swift action to freeze a significant share of the recovered tokens, supporting coordinated restitution efforts across the DeFi sector.
Multiple protocols, foundations, and stakeholders pledged over $314 million toward compensating affected parties.
Arbitrum’s community showed overwhelming support for releasing the funds through a Snapshot poll, with near-unanimous approval.
The strategy involves channeling the ETH into Aave-controlled mechanisms to enable efficient repayments.
However, on May 1, legal representatives for families awarded roughly $877 million in default judgments against North Korea for terrorism-related claims served the restraining notice.
They contended that the brief control exercised by the suspected hackers could allow the assets to be treated as subject to their enforcement actions.
Aave responded by filing an urgent court motion, arguing that stolen property does not transfer legitimate ownership rights to thieves and that prolonged delays could destabilize DeFi markets through cascading effects on collateral and liquidity.
The protocol highlighted the importance of returning value to legitimate victims of the exploit rather than allowing unrelated claims to derail recovery.
Judge Garnett’s concise two-page order strikes a practical middle ground. It enables the technical transfer and protects those involved in the governance process, while explicitly stating that the underlying claims remain intact and follow the assets to their new location.
The court deferred decisions on broader issues, ensuring no prejudice to future arguments regarding ownership or North Korean connections.
This case highlights the growing tensions between fast-moving blockchain governance and traditional judicial processes for asset recovery.
It underscores challenges in attributing hacks, enforcing cross-border judgments, and balancing the interests of everyday crypto users against long-standing victims of state-sponsored activities.
For the DeFi ecosystem, the ruling advances one of the most ambitious collaborative recovery programs to date, offering hope for meaningful restitution while legal proceedings continue.
Uncertainties persist about the ultimate fate of the funds if claims advance further. The outcome may serve as somewhat of a precedent for how courts address similar intersections of decentralized systems and civil enforcement in the digital asset space.