Aave has filed an emergency motion in a New York court to unfreeze roughly $71 million in ETH that was locked down by a restraining order targeting the Arbitrum DAO. The frozen funds are at the center of a dispute over who gets them — the victims of an April 18 exploit or creditors with a separate claim tied to North Korea's Lazarus Group.
What happened to the ETH
The ETH was originally part of about 116,500 rsETH that Lazarus Group stole from Kelp DAO's LayerZero bridge on April 18. Three days later, Arbitrum's Security Council used its 9-of-12 emergency powers to move 30,765 ETH out of the attacker's reach, designating it for a recovery pool. Aave's April 24 funding update pegged the original backing hole at 163,183 ETH. Between Kelp's own freeze, Arbitrum's action, and expected liquidations on Aave, the coalition closed about 52.9% of that gap.
DeFi United assembled over $300 million in commitments to cover the rest. Mantle contributed a credit facility of up to 30,000 ETH, and Aave itself requested 25,000 ETH from its treasury. But then a court in the Southern District of New York approved a restraining notice aimed at seizing the frozen ETH — and Aave argues that money belongs to the exploit victims, not to plaintiffs relying on a prior judgment against North Korea.
Why Aave is fighting the order
The plaintiffs' theory hinges on linking the April 18 exploit to Lazarus Group and on earlier court rulings tied to North Korea. Aave's motion pushes back hard: stolen assets don't become attachable property just because a thief briefly held them, the filing argues. The motion also contends that the Arbitrum DAO isn't a legal entity that can be served with a restraining order.
The service plan itself was aggressive. Copies went to the Arbitrum governance forum, legal entities behind the DAO, Security Council members, and large ARB holders, with a warning that noncompliance could mean legal consequences for governance actors. That's a threat that hits at the core of how DAOs operate — through decentralized voting and multisigs, not through a registered corporation.
DAOs and the courts
US courts have already shown they're willing to treat DAOs as general partnerships or suable collectives. Cases involving Lido DAO, bZx, and Compound have set that precedent. Travers Smith's analysis noted that reachability centers on governance structure and demonstrated control, and Arbitrum's exposure looks rooted in its documented, exercised emergency-action mechanism.
Before Aave even filed the motion, delegates on Arbitrum's forum were already asking about indemnification, defense-cost advancement, and litigation exposure. The DeFi United response proved that major protocols will override immutability when losses are large enough — helping users, yes, but also exposing governance levers that courts can try to reach.
The infrastructure gap
The multisig and Snapshot vote infrastructure that made the recovery possible has no built-in mechanism for handling a competing court claim, a personal liability notice to a Security Council member, or a creditor's argument that recovery assets are attachable. That's the unresolved question now: if a court orders the frozen ETH turned over, who — or what — on the governance side has the legal standing and the technical means to object?
