$285 Million Drift Hack Traced to Six-Month DPRK Social Engineering Operation
This image was generated by AI and may not depict real events.
A social engineering operation by North Korean hackers led to the theft of $285 million from Drift, a Solana-based decentralized exchange. The attack was the result of a six-month operation by a state-sponsored hacking group known as UNC4736, which targeted Drift contributors at cryptocurrency conferences.
Drift was hacked for $285 million on April 1, 2026. The attack was part of a social engineering operation by North Korean hackers that began in fall 2025. The hackers posed as a quantitative trading company and built relationships with Drift contributors at cryptocurrency conferences. They onboarded an Ecosystem Vault on Drift and asked detailed product questions while depositing over $1 million. The hackers then stole $285 million. Drift is working with law enforcement to investigate the attack.
This content was automatically generated and/or translated by AI. It may contain inaccuracies. Please refer to the original sources for verification.