Key Takeaways
- Over 30,000 ETH (approximately $71M) connected to the KelpDAO exploit was secured by Arbitrum’s Security Council
- The 12-member elected body exercised emergency authority to transfer assets into an ownerless wallet
- The rapid response stopped the attacker from laundering stolen assets through additional channels
- The action has sparked renewed discussion about governance authority on blockchain networks
- Arbitrum representatives emphasize the council’s transparency, electoral mandate, and limited scope
Arbitrum’s Security Council took decisive action this week, securing more than 30,000 ETH valued at approximately $71 million following an exploit targeting KelpDAO. The council moved the assets from the attacker’s wallet to an ownerless address, effectively preventing any further movement.
[[SCRIPT_0]]
The response came quickly. Steven Goldfeder, co-founder of Offchain Labs, the organization behind Arbitrum, revealed that the council initially considered taking no action. A member within the group proposed the targeted approach to isolate the funds.
“The default was do nothing,” Goldfeder explained. “Then this idea actually emerged — a way to do it in a very surgical way without affecting any other user.”
The timing proved critical. Within hours of the council’s intervention, the attacker started moving and laundering what remained of the stolen funds, demonstrating the narrow operational window.
The Security Council consists of 12 members chosen by Arbitrum token holders through on-chain voting every six months. This body can activate emergency measures without requiring a full community vote.
Patrick McCorry, head of research at the Arbitrum Foundation, emphasized the transparency of these mechanisms. “You can see exactly what powers they have,” he stated, noting that council members are “elected by token holders, not hand-picked by us.”
Governance Authority Under Scrutiny
The freezing action has reignited ongoing discussions within the crypto space about the meaning and implementation of decentralization. The foundational concept suggests that once a transaction occurs, no entity should possess the authority to reverse or alter it — a philosophy sometimes expressed as “code is law.”
Some observers view this intervention as evidence that Arbitrum operates with centralized oversight capabilities. They point out that if a small group can act on stolen assets, similar mechanisms could theoretically be applied in other scenarios, including in response to regulatory demands.
Goldfeder dismissed suggestions that a full token-holder vote would have been viable under the circumstances. “The DAO cannot be consulted, because the second the DAO is consulted, that essentially means North Korea is consulted,” he said, referencing investigative findings linking the perpetrator to state-affiliated entities.
Certain community members advocated for broader governance participation regardless of urgency. Arbitrum team members countered that immediate action was necessary and that public discussion would have alerted the attacker.
Emergency Powers as Safety Mechanism
Arbitrum’s framework positions the council as an emergency backstop rather than a standing governing body. The public nature of its capabilities and its election process serve as evidence that authority flows from the community rather than from centralized control.
“We’re no more or less decentralized today than we were yesterday,” Goldfeder stated.
The secured funds continue to be held in the locked wallet while the broader Arbitrum DAO considers next steps through its governance process.
