.png){kind=logo}
Radiant Capital will wind down operations after failing to recover from a $50 million exploit, raise new funding, or keep enough resources to run responsibly. The DAO said on June 1 that users can still withdraw assets, repay loans, and manage positions as the lending protocol enters maintenance.
Radiant’s decentralized autonomous organization said it no longer sees a viable route forward after repeated attempts to recover stolen assets and raise capital. It also cited weak growth and limited resources as contributors and community members supported the platform under difficult conditions.
The decision ends a difficult phase for a project that once ranked among the largest cross-chain lending platforms. Radiant launched in 2022 and aimed to unify liquidity across multiple blockchains.
The protocol grew quickly during 2023, with total value locked reaching $386.8 million in December 2023. Still, the hack and failed recovery efforts left the platform without enough support to continue active operations.
Under the wind-down plan, Radiant will keep its front end online and leave smart contracts accessible for users. Users will still have access to withdrawals, loan repayments, and existing position management.
At the same time, Radiant will stop development work, protocol upgrades, and expansion efforts. DAO contributors will step away from active operations as the protocol moves into a maintenance state.
Radiant urged users to manage exposure carefully during the final phase. Users can still access withdrawals, loan repayments, and position management after the $53 million breach forced the protocol into maintenance mode.
Read More: Radiant Capital: 10 Interesting Facts About This DeFi Lender
Radiant said its remediation portal will remain open for claims tied to the hack. The DAO also said any assets recovered in the future will go back to affected users. Previous recovery work has delivered limited results. In October 2025, CertiK reported that wallets linked to the attacker deposited 2,834 ETH into Tornado Cash.
CertiK said the attacker moved funds through multiple addresses and swaps involving DAI before using the mixer. The firm estimated that about $10.8 million in Ethereum had already moved through Tornado Cash.
Radiant said in December 2024 that an attacker posing as a former contractor shared malware through Telegram. According to the protocol, a malicious ZIP file circulated among developers for feedback and created the entry point.
Mandiant later linked the incident to AppleJeus, which it identified as part of North Korea’s cyber ecosystem. The cybersecurity firm said attackers gained control of three of Radiant’s eleven multisig signer permissions. The attackers then replaced the lending pool’s implementation contract. That change allowed them to steal about $53 million from Radiant’s Arbitrum and BNB Chain deployments.
Similar tactics later appeared in other crypto incidents. In April 2026, Drift Protocol said it had medium-high confidence that the same actors caused a separate exploit against its platform.
Drift’s investigation said the group spent months building trust with contributors through conference meetings and professional contacts. The group then deployed malicious tools and links. After Radiant announced the closure plan, RDNT fell 4.2%.
Radiant Capital’s wind-down follows failed recovery efforts, limited funding, and a major exploit tied to North Korea-linked actors. Users can still withdraw assets, repay loans, and manage positions while the DAO keeps recovery claims open. Affected users should continue tracking official recovery updates.
