Close Menu
Uncategorized

Drift Loses $285M in Major Nonce Social Engineering Attack Tied to DPRK

Staff WriterBy No Comments2 Mins Read5 Views

Top Highlights

  1. Drift, a Solana-based decentralized exchange, lost approximately $285 million in a sophisticated attack involving social engineering and multi-week planning without exploiting smart contract vulnerabilities.
  2. The breach was executed within 10 seconds by draining major vaults after obtaining multisig approvals and controlling protocol-level permissions.
  3. Evidence suggests North Korean state-linked actors (DPRK) are behind the attack, aligning with their ongoing, well-resourced crypto theft campaign that has stolen over $6.5 billion since early 2023.
  4. The incident highlights escalating threats from DPRK hacking groups, which now employ advanced social engineering and AI tools, targeting not just exchanges but all crypto infrastructure, with recent supply chain attacks linked to these actors.

Drift’s Security Breach Results in Massive Loss

Recently, the decentralized exchange Drift lost around $285 million in a security attack. The breach happened on April 1, 2026, and was carried out using a sophisticated social engineering tactic involving durable nonces. Attackers quickly gained control over Drift’s administrative powers and executed the theft within minutes. This incident did not exploit flaws in Drift’s smart contracts, but instead, it misused transaction approvals to take over the platform. The company states the breach involved staged preparations that lasted for weeks. As a result, the thieves introduced a fake asset and removed withdrawal limits, enabling them to steal funds efficiently. It highlights the increasing danger posed by targeted social engineering in the crypto world.

Link to North Korea and Wider Implications

Security analysts suggest North Korean hackers may be behind this attack. Investigations identify patterns similar to previous crimes linked to DPRK-assisted groups. These groups often use techniques like mixing stolen funds through services such as Tornado Cash and cross-chain bridges. Moreover, they operate with high speed, draining assets almost instantly. Reports indicate that North Korea’s cyber theft operations have stolen over $6.5 billion in recent years, funding their weapons programs. This latest attack emphasizes how social engineering and technical manipulation are growing threats in cryptocurrency sectors. It also underscores the ongoing need for enhanced security measures and vigilant oversight across the entire human and technological journey toward digital autonomy.

Discover More Technology Insights

Stay informed on the revolutionary breakthroughs in Quantum Computing research.

Access comprehensive resources on technology by visiting Wikipedia.

DataProtection-V1

Share.
Avatar photo

John Marcelli is a staff writer for the CISO Brief, with a passion for exploring and writing about the ever-evolving world of technology. From emerging trends to in-depth reviews of the latest gadgets, John stays at the forefront of innovation, delivering engaging content that informs and inspires readers. When he's not writing, he enjoys experimenting with new tech tools and diving into the digital landscape.

Related Posts

Comments are closed.