Drift Protocol’s Response to Cyberattack
In response to a severe cyberattack that resulted in the loss of approximately $295 million from user accounts, Drift Protocol—a decentralized exchange operating on the Solana blockchain—is moving forward with a comprehensive plan aimed at compensating those who were impacted. This setback occurred on April 1, when state-sponsored hackers linked to North Korea orchestrated a sophisticated breach, a fact verified by the cybersecurity firm Mandiant. Following the incident, Drift took immediate action by halting all major functions of the platform to mitigate the threat of further unauthorized transactions.
Current Status of Funds
Currently, around 130,259 ETH, equivalent to nearly $293 million, is still held in four Ethereum wallets. These wallets are closely observed and have been blacklisted across multiple exchanges. Additionally, two transactions involving the Wormhole bridge have been temporarily obstructed by its governing body, creating a hold on the funds. Circle, a major player in the stablecoin market, has also frozen transfers amounting to $3.36 million in USDC.
Compensation Plan for Victims
To assist the victims of the attack, Drift is introducing a unique system via recovery tokens, with each token reflecting $1 of verified loss incurred by users. The recovery fund will initially comprise Drift’s remaining assets, totaling around $3.8 million converted to stablecoins, and will be further augmented by a commitment of up to $127.5 million from Tether, alongside contributions from other strategic partners. Users will be able to redeem their tokens once the recovery pool reaches a threshold of $5 million. However, those opting for early redemption will forfeit rights to any future claims from the fund. The ongoing replenishment of the pool will continue until it satisfactorily covers the entire amount lost in the exploit, which totaled $295,426,725.97.
Security Enhancements and Future Plans
On the security enhancement side, Drift has announced plans to launch an entirely new program under a different address and with completely rotated keys. The exchange intends to enforce time locks on sensitive administrative processes and remove vulnerabilities that allowed the April 1 exploit to occur.
Drift is aiming for a relaunch by the second quarter of 2026, with a revitalized focus on being a compact, perpetuals-dedicated exchange. A commitment has already been made for a $20 million market-making facility from Tether to ensure immediate liquidity upon relaunch, alongside a public bounty program offered in collaboration with Bybit, providing 10% of any successfully retrieved assets to incentivize recovery efforts.
Commitment to Users
The leadership at Drift emphasizes their determination to make users whole while re-establishing themselves as a premier perpetuals decentralized exchange on the Solana blockchain. The exchange’s team is implementing tough internal restructuring decisions with a commitment to streamline operations and concentrate resources fully on user recovery and relaunch efforts. They acknowledge the journey ahead will take time, but assure stakeholders that the foundational elements are in place and that collaboration with ecosystem partners is ongoing for successful recovery and future growth.
