Unintended Validator Exit: Post-Mortem
This post-mortem describes an incident in which a StakeWise Vault validator was unintentionally exited due to an Oracle configuration issue, followed by a separate StakeWise V3 Operator service bug that delayed redeployment of the affected ETH.
While only 37% of the Vault (1,381 ETH) was directly affected, staking rewards are distributed across all depositors, resulting in reduced yield for everyone over an estimated ~100-day recovery period. StakeWise has committed to fully compensating the missed rewards.
Context
Prior to the incident, we consolidated our StakeWise Vault validators into two large-balance 0x02 validators, increasing the impact of the issue.
At the time, Ethereum validator queue conditions were approximately 53 days to enter and 1 day to exit, which significantly influenced the recovery timeline.
In StakeWise Vaults, validator exits can be triggered by a network of Oracles. Node operators provide pre-signed voluntary exit messages which are distributed across the set of Oracles. This allows them to enforce validator exits if unstake requests are not processed as expected.
Incident Timeline
March 14th, 2026 — 19:09 UTC
Validator 2070002 was unexpectedly exited from the beacon chain.
We immediately investigated potential causes, including large unstake requests and possible key compromise. No abnormal Vault activity or security issues were identified.
The issue was detected via monitoring alerts within ~25 minutes and reported to StakeWise within one hour. StakeWise confirmed that the exit was triggered by their Oracle system.
March 17th, 2026 — 20:26 UTC
The validator’s ETH was withdrawn back to the Vault and became eligible for redeployment. Shortly afterward, the StakeWise V3 Operator service redeposited the ETH into the previously exited validator (2070002).
March 18th, 2026 — 22:03 UTC
We identified that the ETH had been redeposited into the exited validator. As exited validators cannot be reactivated, this introduced additional delays before the ETH could be redeployed correctly.
Root Cause Analysis
The incident was caused by two independent issues in the StakeWise ecosystem.
Oracle-triggered validator exit
The Oracle system incorrectly triggered a validator exit due to an overly strict “missing assets” threshold. Over time, this value increased under normal conditions and eventually exceeded the threshold, triggering a validator to exit.
Redeposit into exited validator
The StakeWise V3 Operator service redeposited ETH into the exited validator due to a bug in the deployed version. Pending deposits were associated with Vault validator public keys too broadly, which allowed ETH to be redeposited into a validator that had already exited. Although this issue had already been fixed in a newer release, the update had not yet been applied, as the release notes did not indicate urgency.
Current Status
Due to Ethereum validator queue constraints, the affected ETH remains inactive while awaiting redeployment. The deposit currently in the entry queue is expected to be credited on May 5th, 2026. The funds will then need to be withdrawn and deposited into a new validator, extending the recovery period by several additional weeks depending on entry queue conditions.
Impact
Initially, 37% of the Vault (1,381 ETH) was directly affected. However, as staking rewards are distributed across all Vault depositors, everyone experiences reduced rewards during the recovery period (~100 days).
Contributing Factors
Release notes did not indicate urgency for StakeWise V3 Operator updates.
Validator consolidation increased the blast radius.
Long validator entry queues extended recovery time.
Compensation
The full amount of missed rewards cannot yet be determined, as it depends on future Ethereum validator queue conditions and the total time required to complete recovery. Based on the currently known timeline, the estimated missed rewards amount to 6.30538165 ETH.
This estimate will be updated once the full impact is known. StakeWise has committed to fully compensating the missed rewards for affected Vault users.
Compensation will be distributed through multiple transactions over time:
Action Items
Improve StakeWise V3 Operator release notes to clearly indicate critical updates.
Improve communication and publish post-mortems more quickly.
About Serenita
Serenita is a leading blockchain infrastructure operator specializing in secure and reliable solutions for managing and growing digital assets, with a primary focus on Ethereum staking. Our seasoned team combines years of experience, technical expertise, and industry knowledge to ensure optimal performance and best-in-class digital asset security. Serenita is committed to contribute to the broader ecosystem by continuing to support home stakers, running minority clients and taking any future measures that benefit the network at large.
We guide our customers through the technical complexities of Ethereum staking, providing non-custodial solutions with the flexibility to stop staking at any time. Reach out to discover how Serenita can help you manage and grow your digital assets, providing expert-driven solutions tailored to your needs.