A major cyberattack has struck the decentralised finance platform Drift Protocol, leading to the theft of approximately $280 million worth of cryptocurrency. The incident was confirmed by the company after unusual activity was detected on its systems.
The stolen amount represents nearly half of the total funds held on the platform at the time of the attack. This makes the breach one of the most serious incidents in the decentralised finance space in recent months.
The attack reportedly took place on Wednesday. Soon after, the Drift issued a public warning and began taking emergency steps to control the situation. Users were advised not to deposit any funds into the protocol while investigations are ongoing.
As a precaution, the exchange froze user funds. This means that users are currently unable to withdraw or transfer their assets. The move was taken to prevent further losses and to secure the remaining funds on the platform.
How Drift works and why it is popular
Drift operates on the Solana blockchain. It is known for offering a type of trading called perpetual futures. These are contracts that allow users to bet on whether the price of a cryptocurrency will rise or fall.
Unlike traditional futures contracts, perpetual futures do not have an expiry date. Traders can keep their positions open for as long as they want. This flexibility has made them very popular among crypto traders.
$44 million UXLINK hack resurfaces as attacker moves $11.8 million into DAI
Another reason for their popularity is leverage. This allows traders to borrow funds and make larger bets. While this can increase profits, it also increases risks.
Over the past year, trading in such products has grown rapidly. New platforms like Hyperliquid have seen massive increases in trading volumes. These platforms allow users to trade around the clock, even on weekends, unlike traditional financial markets.
This rapid growth has made decentralised exchanges an important part of the crypto ecosystem. However, it has also made them attractive targets for cybercriminals.
How the hackers carried out the attack
According to the company, the attack was highly sophisticated and carefully planned. It likely involved weeks of preparation before being executed within a short time frame.
Instead of relying only on technical vulnerabilities, the hackers appear to have used social engineering. This involves manipulating individuals who have access to critical systems or wallets. By gaining trust or exploiting human error, attackers can bypass strong technical safeguards.
Once access to key wallets was obtained, the attackers were able to move large amounts of cryptocurrency out of Drift. These transactions are often fast and difficult to reverse once completed.
The nature of the attack has drawn comparisons to previous incidents in the crypto sector. One such case involved Bybit, where hackers used advanced methods to steal a large amount of digital assets.
Data from Chainalysis shows that such attacks are becoming more frequent. Billions of dollars have been lost to crypto-related cybercrime in recent years, highlighting the growing scale of the problem.
Ships asked to pay in yuan or crypto for transit through the Strait of Hormuz
Immediate impact on users and the platform
The immediate impact of the hack has been severe for both the platform Drift and its users. With funds frozen, many users are unable to access their assets. This has created uncertainty and concern among the trading community.
The loss of nearly half of the Drift’s total funds has also raised questions about its financial stability. Smaller exchanges often do not have the same level of reserves as larger platforms, making recovery more difficult.
In earlier cases, some exchanges managed to restore user confidence by securing emergency funding. However, it remains unclear how the situation will unfold in this case.
The platform has continued to communicate through official channels, stating that the attack was real and not a hoax. It has also urged users to remain cautious and avoid further deposits until more information is available.
The incident highlights the risks associated with decentralised finance platforms, especially those handling large volumes of leveraged trading.
