Kraken has become the latest major crypto exchange to abandon LayerZero, migrating its cross-chain infrastructure to Chainlink’s CCIP following the security failures exposed by April’s $292 million Kelp DAO exploit. The move signals deepening institutional skepticism of LayerZero’s architecture less than a month after the breach, which hackers suspected to be linked to North Korea’s Lazarus Group executed through the protocol’s single-verifier setup.

The exchange announced it will deprecate LayerZero entirely, moving Kraken Wrapped Bitcoin (kBTC) and all future wrapped tokens exclusively to Chainlink CCIP. Kraken cited Chainlink’s “enterprise-grade infrastructure with strict security and risk management requirements,” including independent node validation, secure-by-default design, and native rate limiting—attributes LayerZero’s compromised architecture plainly lacked.

The LayerZero Security Crisis

LayerZero’s problems run deeper than a single application misconfiguration. During the Kelp DAO attack, both internal and external infrastructure failed simultaneously. Internal remote procedure calls (RPCs) had their “source of truth poisoned” while external RPC providers faced coordinated denial-of-service attacks. LayerZero blamed Kelp’s reliance on a single Decentralized Verifier Network node, yet the dual-layer compromise exposed systemic fragility in the protocol’s design.

The company issued what it called an “overdue apology” on May 9, admitting to poor communication in the weeks following the hack. While LayerZero confirmed no other protocols were directly compromised and more than $9 billion in bridged assets have moved through the protocol since April 19, trust had visibly fractured.

A Broader Exodus Taking Shape

Kraken is one of several heavyweight defectors. Kelp DAO itself is migrating to CCIP, burning 117,132 stolen rsETH as part of recovery efforts. Solv Protocol shifted $700 million in tokenized Bitcoin to Chainlink on May 7, followed by reinsurance protocol Re moving $475 million in TVL on May 8.

The migration wave has accelerated dramatically. More than $3 billion in total value locked has moved from LayerZero to CCIP since the exploit, with numerous other protocols suspending LayerZero bridging operations entirely. Lido, the world’s largest Ethereum liquid staking protocol, made an explicit case for CCIP’s “defense-in-depth model,” positioning it as the new standard for cross-chain interoperability.

Market Response Tells a Fragmented Story

Token prices have diverged sharply. Chainlink’s native token LINK has remained essentially unmoved, hovering near $10—an 80% decline from its 2021 peak—suggesting markets see institutional adoption of CCIP as a baseline expectation rather than a catalyst. LayerZero’s ZRO token has fared worse, falling more than 30% since the April breach and 80% from its 2024 all-time high, reflecting investor doubts about the protocol’s recovery trajectory.

LayerZero did not respond to requests for comment on the defections. The protocol now faces the difficult task of rebuilding trust with major applications and exchanges while competitors consolidate their positions around proven alternatives.