PWC News
Thursday, July 9, 2026
No Result
View All Result
  • Home
  • Business
  • Economy
  • ESG Business
  • Markets
  • Investing
  • Energy
  • Cryptocurrency
  • Market Analysis
  • Home
  • Business
  • Economy
  • ESG Business
  • Markets
  • Investing
  • Energy
  • Cryptocurrency
  • Market Analysis
No Result
View All Result
PWC News
No Result
View All Result

$285M Bug Or Human Error? Solana-Based Drift Protocol Suffers Largest Exploit Of 2026

Home Cryptocurrency
Share on FacebookShare on Twitter


Solana-based Drift Protocol has suffered the most important exploit of 2026 thus far, shedding practically $300 million in a “extremely refined operation” that has raised considerations concerning the rising menace of human-targeted assaults within the crypto area.

Associated Studying

Solana DEX Loses $285M On April Idiot’s Day

On Wednesday, Solana-based decentralized alternate (DEX) Drift Protocol was the sufferer of an exploit that stole a whole bunch of hundreds of thousands of {dollars} from its vaults. After on-line experiences flagged uncommon on-chain exercise yesterday afternoon, Drift’s official channels confirmed the assault, rapidly suspending deposits and withdrawals.

Drift Protocol confirms the assault. Supply: X

In response to experiences, the assault lasted lower than 20 minutes and stole round $285 million in a number of belongings, together with USDC, JPL, USDT, JUP, USDS, WBTC, and WETH, from practically 20 vaults. This marks the most important crypto exploit of 2026 thus far, and one of many largest hacks within the trade, simply above WazirX’s $235 million hack.

The hack worn out half of the Solana-based venture’s complete worth locked (TVL), which fell from roughly $550 million to $252 million, per DeFiLlama information. Drift protocol’s token, DRIFT, additionally plunged, retracing practically 40% over the previous 24 hours.

Inside hours, the exploiter had swapped $270.9 million into USDC, bridged them from Solana to Ethereum through the CCTP TokenMessengerMinterV2, and bought 129,000 ETH, splitting them throughout a number of wallets.

In a Thursday submit, Drift shared the small print of the incident, affirming that “a malicious actor gained unauthorized entry to Drift Protocol by a novel assault involving sturdy nonces, leading to a fast takeover of Drift’s Safety Council administrative powers.”

Solana’s sturdy nonces are a sophisticated mechanism that enables transactions to bypass the everyday brief expiration date of normal transactions. This allows customers to pre-sign transactions for future execution, offline signing, or complicated multisig workflows.

“This was a extremely refined operation that seems to have concerned multi-week preparation and staged execution, together with using sturdy nonce accounts to pre-sign transactions that delayed execution,” the submit continued.

Malicious Actors Concentrating on People, Not Sensible Contracts

The Solana-based DEX emphasised that the exploit was not the results of a bug in Drift’s applications or good contracts, noting that they discovered no proof of compromised see phrases both.

“The assault concerned unauthorized or misrepresented transaction approvals obtained previous to execution, seemingly facilitated by sturdy nonce mechanisms and complicated social engineering,” the venture underscored.

Lily Liu, President of the Solana Basis, addressed the incident, asserting that it’s a blow to the entire Solana ecosystem. Liu identified that “Sensible contracts held up. The actual targets now are people: social engineering and opsec weaknesses greater than code exploits.”

Associated Studying

Ledger CTO Charles Guillemet linked Drift’s assault technique to Bybit’s $1.4 billion hack, which was attributed to North Korean hacking teams. As he defined, the attackers seemingly compromised a number of machines belonging to multisig signers by long-term infiltration and misled operators into approving the malicious transactions.

This modus operandi is just like the Bybit hack final yr, broadly attributed to DPRK-linked actors. The sample is turning into acquainted: affected person, refined supply-chain-level compromise concentrating on the human and operational layer, not the good contracts themselves.

Guillemet affirmed that the incident is “yet one more wake-up name for the trade” to boost the bar on safety. “In the end, safety isn’t just about code audits. It’s about giving operators and customers the fitting info on the proper time, to allow them to make knowledgeable selections about what they signal,” he concluded.

Solana, sol, solusdt
Solana trades at $76 within the one-week chart. Supply: SOLUSDT on TradingView

Featured Picture from Unsplash.com, Chart from TradingView.com



Source link

Tags: 285MBugdrifterrorExploitHumanlargestProtocolSolanaBasedsuffers
Previous Post

How the benne dosa boom is rewiring India’s QSR market

Next Post

Real-Time Channel Inventory Visibility: The Strategic Guide for 2026

Related Posts

XRP Bearish Trend Deepens as Weak Liquidity and Falling Open Interest Signal Caution
Cryptocurrency

XRP Bearish Trend Deepens as Weak Liquidity and Falling Open Interest Signal Caution

July 9, 2026
SWIFT Launches Blockchain, Announces Tokenized Deposit Pilot with 17 Banks
Cryptocurrency

SWIFT Launches Blockchain, Announces Tokenized Deposit Pilot with 17 Banks

July 9, 2026
MakerDAO’s SPARK Distribution Plan Gives The Endgame Roadmap A Sharper Shape
Cryptocurrency

MakerDAO’s SPARK Distribution Plan Gives The Endgame Roadmap A Sharper Shape

July 8, 2026
COIN and CRCL Stock Price Prediction Ahead of July 18 GENIUS Act Rule Deadline
Cryptocurrency

COIN and CRCL Stock Price Prediction Ahead of July 18 GENIUS Act Rule Deadline

July 8, 2026
EU Lawmakers Look Beyond MiCA, Targeting DeFi and Staking
Cryptocurrency

EU Lawmakers Look Beyond MiCA, Targeting DeFi and Staking

July 8, 2026
Jim Rickards Asked Robert Kiyosaki to Read One Manuscript, Then His View of Global Finance Changed
Cryptocurrency

Jim Rickards Asked Robert Kiyosaki to Read One Manuscript, Then His View of Global Finance Changed

July 8, 2026
Next Post
Real-Time Channel Inventory Visibility: The Strategic Guide for 2026

Real-Time Channel Inventory Visibility: The Strategic Guide for 2026

Canada's 0-billion challenge: How to build a homegrown defence sector and fast

Canada's $150-billion challenge: How to build a homegrown defence sector and fast

3 Magnificent 7 Stocks at Make-or-Break Moments for AI Investors | Investing.com

3 Magnificent 7 Stocks at Make-or-Break Moments for AI Investors | Investing.com

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

RECOMMENDED

London workers most exposed to AI jobs cull
Economy

London workers most exposed to AI jobs cull

by PWC
July 8, 2026
0

Tuesday 07 July 2026 4:37 pm London could possibly be closely affected by an AI jobs cull. Staff in London...

ICAI CA Foundation May 2026 Toppers list: Check full list of toppers, pass percentage, how to check result and more

ICAI CA Foundation May 2026 Toppers list: Check full list of toppers, pass percentage, how to check result and more

July 3, 2026
If you are reachable, you’re breachable: Zscaler’s Jay Chaudhry

If you are reachable, you’re breachable: Zscaler’s Jay Chaudhry

July 4, 2026
Natwest boss caught in AI social media scam

Natwest boss caught in AI social media scam

July 4, 2026
Shopify: Hold It If You Already Have It, Shop More Shares Later (NASDAQ:SHOP)

Shopify: Hold It If You Already Have It, Shop More Shares Later (NASDAQ:SHOP)

July 9, 2026
But first, coffee: The drink that energized the American Revolution

But first, coffee: The drink that energized the American Revolution

July 5, 2026
PWC News

Copyright © 2024 PWC.

Your Trusted Source for ESG, Corporate, and Financial Insights

  • About Us
  • Advertise with Us
  • Disclaimer
  • Privacy Policy
  • DMCA
  • Cookie Privacy Policy
  • Terms and Conditions
  • Contact Us

Follow Us

No Result
View All Result
  • Home
  • Business
  • Economy
  • ESG Business
  • Markets
  • Investing
  • Energy
  • Cryptocurrency
  • Market Analysis

Copyright © 2024 PWC.