Solana's decentralized exchange Drift Protocol suffered the largest DeFi hack of 2026 on April Fool's day, losing $280 million in user funds through a sophisticated attack. The exploit didn't involve bugs in Drift's code but used 'durable nonces,' a legitimate Solana transaction feature, to pre-sign administrative transfers weeks before executing them, bypassing the protocol's multisig security in minutes. Blockchain analytics firm Elliptic suggests North Korean hackers were likely behind the attack, pointing to cross-chain laundering patterns and Solana-specific tracing challenges that mirror prior state-linked operations. The incident has had severe ecosystem-wide impacts, with platforms like Step Finance, SolanaFloor, and Remora Markets shutting down operations. DeFi total value locked (TVL) on affected chains showed temporary outflows as investor confidence dipped. The DRIFT token crashed 40% in 24 hours following the attack, with funding rates for perpetuals surging above 6,000%.