DeFi experiences its worst month in history, with over $606 million stolen in three weeks

According to Forbes, the most severe month in DeFi history for losses, with over ten protocols hacked in less than three weeks, totaling more than $606 million, including incidents at Drift and Kelp DAO which caused losses of $285 million and $292 million respectively, accounting for approximately 95% of the total losses. The article suggests that this indicates DeFi risks are no longer limited to smart contract code; Drift exposed issues such as human signatures, governance permissions, and time lock deficiencies, while Kelp DAO revealed risks related to cross-chain verification, RPC nodes, and off-chain infrastructure. The stolen rsETH later entered lending protocols like Aave, causing risks to spread to large DeFi markets. The article states that in the future, when assessing DeFi protocol risks, in addition to code audits, attention should also be paid to collateral sources, cross-chain bridges, oracles, governance structures, and off-chain dependencies.