Stealth address privacy protocol Umbra put its hosted frontend into maintenance mode after confirming that funds stolen in recent hacks had passed through the system.
The team confirmed that roughly 349 Ethereum (ETH), worth about $800,000, came from recent “high-profile” exploits.
Umbra Responds to Laundering Reports
In a recent post on X (formerly Twitter), Umbra revealed that it made the move at 6:45 AM ET on April 21.
Follow us on X to get the latest news as it happens
The team confirmed that all funds held in stealth addresses remain entirely secure and were never at risk. The Umbra protocol itself is still functioning as usual. Only their hosted instance of the frontend is offline.
Umbra added that access to the hosted frontend will be reinstated once the team is confident that bringing it back online won’t interfere with the ongoing recovery efforts.
The response comes as investigators continue tracing the KelpDAO attacker. The hacker started laundering the funds after Arbitrum’s Security Council froze roughly $71 million worth of linked ETH. According to on-chain analyst EmberCN, a series of small ETH transfers were routed through UmbraCash.
The KelpDAO exploit, attributed to North Korea’s Lazarus Group, most likely its TraderTraitor sub-group, stands as the largest DeFi hack of 2026 to date. The incident has shaken investor confidence across the sector. It has also fueled a notable outflow of funds from Aave in recent days.
Subscribe to our YouTube channel to watch leaders and journalists provide expert insights
The post Umbra Confirms $800,000 in Hack Funds Ran Through the Protocol — Pulls Its Frontend Offline appeared first on BeInCrypto.
Source: https://beincrypto.com/umbra-frontend-offline-stolen-eth/
