Ethical Hacking News
North Korean hackers have stolen at least $280 million worth of cryptocurrency from a DeFi trading platform called Drift Protocol. The attack is considered one of the most complex and well-planned operations in recent memory, highlighting the ongoing threats posed by sophisticated cyberactors to global cybersecurity.
The Drift Protocol hack is one of the most complex and well-planned operations in recent memory, with attackers stealing at least $280 million worth of cryptocurrency. The attack took advantage of Tornado Cash usage and CarbonVote deployment timing consistent with North Korean tradecraft, allowing for rapid large-scale laundering. Despite its robust security measures, the attackers gained admin control within minutes of performing a legitimate transaction. The actual amount of stolen assets may be as high as $285 million. The attack highlights the ever-evolving nature of cybersecurity threats in the DeFi space and the need for closer oversight and stringent security measures.
The cryptocurrency market has witnessed numerous high-profile hacks and security breaches over the years, with millions of dollars being lost by investors. However, a recent incident on a DeFi (Decentralized Finance) trading platform called Drift Protocol has left experts in awe due to its sophistication and scale. In April 2026, Drift Protocol reported that it had been targeted by North Korean hackers who managed to steal at least $280 million worth of cryptocurrency from the platform's Security Council administrative powers.
The attack, which was discovered on April 1st, is considered one of the most complex and well-planned operations in recent memory. According to Elliptic, a blockchain intelligence firm, the attackers took advantage of Tornado Cash usage and CarbonVote deployment timing consistent with DPRK tradecraft, as well as cross-chain bridging patterns and rapid large-scale laundering. These tactics allowed them to strike at a chosen time and execute their malicious transactions without raising immediate suspicion.
Drift Protocol, which operates on the Solana blockchain, is a non-custodial exchange that allows users to interact with on-chain markets while maintaining full control over their funds. The platform boasts 200,000 traders, with total trading volumes exceeding $55 billion and daily peaks of up to $13 million. Despite its robust security measures, the attackers were able to gain admin control within minutes of performing a legitimate transaction.
In a statement, Drift Protocol claimed that no seed phrases had been compromised, and the hacker did not exploit any flaws in their programs or smart contracts. The platform is now working closely with security firms, cryptocurrency exchanges, and law enforcement authorities to trace and freeze the stolen funds. According to PeckShield, which tracked the losses, the actual amount of stolen assets may be as high as $285 million.
The attack highlights the ever-evolving nature of cybersecurity threats in the DeFi space. As these platforms continue to grow in popularity, they also become increasingly attractive targets for malicious actors. This incident serves as a stark reminder that even the most secure systems can fall victim to determined and well-planned attacks.
Furthermore, the involvement of North Korean hackers adds another layer of complexity to the situation. The DPRK (Democratic People's Republic of Korea) has been linked to numerous high-profile cyberattacks in recent years, including hacks on major cryptocurrency exchanges. This latest incident suggests that these actors continue to pose a significant threat to global cybersecurity.
The Drift Protocol attack is also noteworthy for its implications on the broader DeFi ecosystem. As more and more users turn to decentralized finance platforms for investment opportunities, it's essential for regulators and security experts to closely monitor activity in this space. The lack of oversight and stringent security measures has led to numerous incidents like the one on Drift Protocol.
In conclusion, the Great Drift Heist is a sobering reminder of the dangers that lurk in the world of cryptocurrency and DeFi trading. As these platforms continue to grow, it's essential for users, regulators, and security experts to work together to prevent such attacks from happening in the future.
Related Information:
https://www.ethicalhackingnews.com/articles/The-Great-Drift-Heist-North-Korean-Hackers-Steal-280-Million-from-Secure-DeFi-Trading-Platform-ehn.shtml
https://www.bleepingcomputer.com/news/security/drift-loses-280-million-north-korean-hackers-seize-security-council-powers/
https://www.newsbreak.com/news/4573950311696-drift-loses-280-million-north-korean-hackers-seize-security-council-powers
Published: Fri Apr 3 16:54:15 2026 by llama3.2 3B Q4_K_M
