In short
- Solana perp DEX Drift Protocol has suffered an exploit that impacted greater than $200 million in funds, with some estimates suggesting $285 million has been stolen.
- Whereas the investigation remains to be ongoing, the assault is suspected to be the results of a leaked non-public key.
- Drift has paused deposits and withdrawals amid the exploit.
Solana-based decentralized alternate Drift Protocol is actively experiencing an exploit that has led to the theft of greater than $200 million in funds, on-chain knowledge reveals.
The protocol, which is primarily used to commerce perpetual futures, has paused deposits and withdrawals amid the assault.
“Drift Protocol is experiencing an energetic assault,” it posted on X round 3:00 p.m. ET on Wednesday. “Deposits and withdrawals have been suspended. We’re coordinating with a number of safety corporations, bridges, and exchanges to include the incident. This isn’t an April Fools joke,” the corporate posted.
Reviews of suspicious exercise started round two hours earlier, when customers observed giant sums being transferred from the Drift Protocol vault to a Solana handle starting with “HkGz4K.”
Drift Protocol is experiencing an energetic assault. Deposits and withdrawals have been suspended. We’re coordinating with a number of safety corporations, bridges, and exchanges to include the incident. This isn’t an April Fools joke. We’ll present extra updates from this account as… https://t.co/03SRPq4fHj
— Drift (@DriftProtocol) April 1, 2026
The account’s first switch came about round 11:06 a.m., when roughly 41 million JLP tokens valued at $155 million have been transferred from the Drift Vault to “HkGz4K.” Shortly thereafter, tens of millions extra in numerous crypto tokens have been transferred to the attacker and in the end distributed to different wallets.
The handle, which was first funded with 1 SOL final week, might have had entry to the potential exploit since that point, having obtained a small switch from the Drift Vault valued at round $2.52, in accordance with on-chain knowledge from Solana block explorer, Solscan.
After Wednesday’s exploits, complete transfers from the protocol to the attacker’s handle add as much as greater than $250 million, in accordance with knowledge from blockchain analytics agency Arkham Intelligence.
Estimates from PeckShield Alerts point out that as a lot as $285 million might have been exploited.
Drift Protocol has not but recognized the reason for the exploit, however on-chain researchers and safety consultants have instructed it could be the results of an uncovered non-public key, which allowed the attacker to compromise admin performance and impression the vaults. In different phrases, human error and never a technical one.
Jiang Xuxian, founding father of blockchain safety agency PeckShield, informed Decrypt that assault relied on gaining privileged entry to Drift’s protocol.
“The admin keys behind Drift have been positively leaked or compromised,” he mentioned.
Drift, which had $550 million in complete worth locked, in accordance with DefiLlama, has been related to different corporations within the Solana ecosystem due to the big selection of belongings obtainable on its platform and its DeFi capabilities.
Some, like publicly traded Solana treasury corporations Ahead Industries and DeFi Growth Corp, have indicated that their treasuries weren’t impacted by the exploit.
Different Solana-based infrastructure corporations, like pockets supplier Phantom, have carried out warnings to customers who could also be making an attempt to entry the Drift Protocol whereas investigations are ongoing.
Drift’s native token, DRIFT, is down practically 28% on the day, just lately altering arms round $0.049. The token has fallen greater than 98% from its November 2024 all-time excessive of $2.60.
Extra reporting by André Beganski
Every day Debrief Publication
Begin day-after-day with the highest information tales proper now, plus unique options, a podcast, movies and extra.