Lombard is the latest protocol to jump from LayerZero to Chainlink’s Cross-Chain Interoperability Protocol (CCIP), as a wave of migrations has pushed the total value moved off LayerZero above $4 billion.
The shift accelerated after a dramatic April 2026 exploit that drained 116,500 rsETH (about $292 million) from Kelp DAO’s LayerZero-powered bridge. LayerZero acknowledged it “made a mistake” by allowing its own verifier network to secure high-value assets in the configuration used, though the team has also denied that the single-verifier setup was formally approved by staff.
High-profile migrations followed quickly. Kraken announced it would replace LayerZero with Chainlink CCIP as the exclusive cross-chain infrastructure for kBTC and all future Kraken-wrapped assets, citing enterprise-grade security and Chainlink’s ISO 27001 and SOC 2 Type 2 certifications. Kelp DAO moved its rsETH to CCIP in early May while disputes over responsibility for the hack continued.
Other large moves include Solv Protocol’s $700 million migration of tokenized Bitcoin (including SolvBTC and xSolvBTC) to CCIP on May 7, and re.xyz shifting $475 million in TVL—both projects pointed to CCIP’s security model (16 independent validator nodes and built-in rate limits) as decisive. Lombard’s decision adds to the momentum away from LayerZero.
Chainlink CCIP touts robust activity and certified security: the protocol has supported more than $28 trillion in cumulative on-chain transaction value and averages about $90 million in weekly token transfers, and is the only oracle platform holding both ISO 27001 and SOC 2 Type 2 certifications.
In response to the outflows and the April exploit, LayerZero has removed support for 1-of-1 DVN configurations and said it will move most routes toward stricter 5-of-5 verifier setups. The team also noted that despite the migrations, over $9 billion in bridged assets has continued to move through LayerZero infrastructure since April 19.
The string of migrations underscores growing market sensitivity to cross-chain security and the premium projects place on audited, enterprise-grade infrastructure as bridges remain one of the most attack-prone layers in DeFi.
Read more AI-generated news on: undefined/news
