$285M Drift Protocol Hack Largest DeFi Exploit of 2026, North Korea Suspected

TRM Labs

Saturday, April 4, 2026·5 min read·Markets

$285M Drift Protocol Hack Largest DeFi Exploit of 2026, North Korea Suspected

On April 1, 2026, Drift Protocol confirmed attackers drained approximately $285 million in user assets, marking the largest DeFi hack of 2026 and the second-largest exploit in Solana's history behind only the $326 million Wormhole bridge hack in 2022.

TRM's investigation suggests North Korean hackers orchestrated the attack. Drift, the largest decentralized perpetual futures exchange on Solana with billions in user assets, became a high-value target due to its complexity and scale.

The sophisticated attack involved weeks of preparation starting March 11, combining social engineering to pre-sign hidden authorizations, eliminating timelock protections, and exploiting oracle vulnerabilities. Attackers created a fictitious CarbonVote Token with minimal seeded liquidity that Drift's oracles accepted as collateral worth hundreds of millions.

#DeFi#Solana#Security#North Korea#Drift Protocol

$285M Drift Protocol Hack Largest DeFi Exploit of 2026, North Korea Suspected

Share this article

Related Articles

Q1 2026 Crypto Crime Report: $169M Stolen Despite 89% Year-Over-Year Decline

AI Crypto Market Rebounds with TAO, FET, and NEAR Leading Recovery

India's Crypto Market in 2025: Adoption Grows While Regulations Stay Vague