Ledger CTO Suspects North Korea Behind $280M Drift Protocol Hack

Share:
April 1, 2026: Drift Protocol (Solana perpetual DEX) lost $280 million after attackers compromised machines of 2-of-5 multisig signers via social engineering; the breach was an operational/multisig compromise, not a smart contract flaw. Ledger CTO links the tactics to North Korean‑linked actors; stolen assets were quickly moved and swapped, making this the largest DeFi hack of 2026 and raising systemic crypto/DeFi risk concerns. The incident intensifies calls for stronger multisig governance and operational security across DeFi, spotlighting risks for DEXs, custodians, and on‑chain adoption.
- Drift Protocol lost $280 million after multisig signers’ machines were compromised, not smart contract flaws.
- A compromise of the 2-of-5 multisig signers weeks prior by North Korean actors enabled the hack.
- This hack sparks calls for stronger operational security governance across the DeFi industry.
Ledger CTO Charles Guillemet said North Korean-linked attackers may be behind the $280 million Drift Protocol hack on Solana. The exploit targeted multisig signers using social engineering, making it the largest DeFi hack of 2026 and raising new concerns about operational security.
Ledger CTO Links Drift Hack to North Korean Tactics
On April 2, 2026, Ledger CTO linked the April 1, 2026, $280 million hack of Drift Protocol, a leading Solana perpetual DEX, to tactics commonly used by North Korean threat actors. The stolen assets were quickly transferred, swapped into…
Read The Full Article Ledger CTO Suspects North Korea Behind $280M Drift Protocol Hack On Coin Edition.
Read More



