Drift Suffers $285 Million Loss in Sophisticated Durable Nonce Social Engineering Attack

A recent security incident has resulted in the loss of approximately $285 million from Drift, a Solana-based decentralized exchange, on April 1, 2026.

The attackers gained unauthorized access to Drift Protocol through a novel attack involving durable nonces, allowing them to rapidly take over the Security Council’s administrative powers.

This incident highlights the growing threat of social engineering attacks in the cryptocurrency space, where malicious actors exploit vulnerabilities in human psychology rather than technical vulnerabilities like CVEs.

The fact that the attack was linked to DPRK raises concerns about the involvement of nation-state actors in cryptocurrency-related cybercrime, emphasizing the need for enhanced security measures and threat intelligence.

As the cryptocurrency landscape continues to evolve, it is crucial for exchanges and users to prioritize security and stay informed about emerging threats, including durable nonce social engineering attacks.

Source: Original Article

Press ESC to close

Share Article:

Tarang Parmar

New SparkCat Malware Variant Targets iOS and Android Devices to Steal Crypto Wallets

Hackers Breach 766 Next.js Hosts Using CVE-2025-55182: Credential Harvesting Operation Uncovered