Drift Hacking Incident: A Challenge for Solana DeFi On April 1, 2026, Drift Protocol, a blockchain-based decentralized finance (DeFi) platform, suffered a massive hacking attack. Built on the Solana network, known for its decentralization, Drift had a total of $285 million (approximately 395 billion KRW) in funds stolen by attackers, marking one of the largest hacking incidents in Solana's ecosystem history. This incident sent shockwaves not only through Drift users but also across the entire DeFi ecosystem. Immediately after the attack, Drift formed an investigation team, working diligently with external forensic experts and authorities to thoroughly analyze the cause of the incident and devise a recovery plan. Approximately two weeks later, on April 16 (local time), Drift officially announced a Tether-led relief plan amounting to approximately $148 million (approximately 205 billion KRW). The Drift Protocol hacking incident once again exposed the security vulnerabilities of DeFi systems in the cryptocurrency market. While DeFi has garnered attention for its rapid innovation and high growth rates, numerous challenges still lie behind this growth. Particularly for derivatives-based platforms like Drift, the complex structure involving leverage positions inherently carries a relatively higher risk of attack. Users holding leverage positions are more likely to suffer concentrated losses from hacking, which is analyzed as a structural risk issue beyond a simple hack. Experts emphasize that addressing these structural risks is an essential task that must evolve alongside cutting-edge technology. Solana has grown as a rival to Ethereum due to its fast processing speed and low fees, but the Drift hacking incident once again brought to light the vulnerabilities in Solana's security infrastructure. As a solution, Drift announced the establishment of a 'Recovery Pool'. The most significant feature of this pool is its revenue-linked structure. In the initial phase, a portion of the revenue generated by Drift Protocol will be combined with funds from the Tether-led Recovery Pool to support affected users. This demonstrates a commitment to long-term recovery of losses by utilizing the platform's ongoing operational revenue, rather than offering a one-time compensation. Drift ultimately aims to fully reimburse user losses totaling $295 million. The slightly higher reimbursement target compared to the initial loss of $285 million is presumed to include additional losses or interest incurred after the hack. Furthermore, Drift plans to issue separate, transferable 'Recovery Tokens' to affected users. These tokens offer users the option to either cash out immediately or hold them in anticipation of increased value as the platform recovers in the future. The transferability of Recovery Tokens is seen as a measure to provide liquidity, allowing victims to respond according to their individual circumstances. Users can trade these tokens to other investors or wait for the platform to be fully restored to potentially receive greater compensation. Drift's self-rescue efforts are drawing attention not just as a recovery plan, but as a method to instill the possibility of a rebound within the DeFi market ecosystem. From USDC to USDT: The Background of Stablecoin Transition Particularly noteworthy is Drift's decision to switch its core payment method within the platform from the existing USDC (USD Coin) to USDT (Tether). USDC has long been regarded as a stablecoin known for its high stability and regulatory compliance. However, in this incident, despite attackers moving the stolen USDC through Circle's bridge, Circle, the issuer of USDC, faced criticism for not taking immediate freezing action. In contrast, Tether has publicly emphasized its proactive policy of freezing or recovering stolen funds in cases of hacking or illicit activities. This decision to switch to USDT appears to be directly related to Tether's capability in freezing funds. Drift anticipates that, with Tether's cooperation, swift fund freezing and recovery will be possible in the event of similar security incidents in the future. The choice of a stablecoin goes beyond mere technical considerations. It is directly linked to the platform's operational philosophy and closely tied to how much stability and trust it can offer users. This decision, sending a significant signal across the entire stablecoin ecosystem, demonstrates that an issuer's credibility and security response capabilities can become key criteria for protocol selection. Experts believe that Drift's case will intensify the competitive landscape among stablecoins. Beyond just price stability or liquidity, the ability to respond in crisis situations is emerging as a crucial variable in stablecoin selection. Many DeFi investors in Korea are also likely to re-recognize the importance of stablecoins through this decision. The Solana network has faced yet another challenge through the Drift hacking incident.
Related Articles