Drift DeFi Project on Solana Suffers $285 Million Crypto Exploit
April 1, 2026 — Drift, a decentralized finance (DeFi) protocol operating on the Solana blockchain, has fallen victim to one of the largest crypto hacks on record, losing approximately $280 million in digital assets. The breach, disclosed late Wednesday, was executed through a sophisticated attack that exploited vulnerabilities involving durable nonces, enabling the attacker to swiftly assume control over Drift’s Security Council administrative privileges.
According to an official statement posted on X (formerly Twitter) by the Drift project, the unauthorized intruder leveraged a novel exploit impacting the protocol’s key management framework. This allowed the hacker to perform a rapid takeover of administrative functions, which in turn facilitated the extraction of nearly $300 million worth of cryptocurrencies from the platform.
The incident marks a severe security lapse in the fast-growing DeFi space, especially on the Solana network, which has been known for its high throughput and low transaction costs but has recently faced scrutiny over its security practices. Drift, a prominent player in the DeFi sector, provides users with decentralized trading and financial services, and the loss represents a significant hit to both its operational integrity and user trust.
Industry experts point to the exploit as a stark reminder of the "human element" vulnerabilities in decentralized finance. Despite the cutting-edge cryptographic defenses generally employed by such protocols, novel attack vectors continue to emerge, underscoring the importance of continuous security audits and robust governance mechanisms.
As of now, Drift is working with cybersecurity firms and blockchain analysts to investigate the full scope of the breach and explore measures for potential recovery of funds. The team has also called on the community and exchanges to remain vigilant against any suspicious activity related to the stolen assets.
This breach comes amid increasing regulatory and community calls for more stringent security standards and transparency within the DeFi ecosystem. It also highlights the challenges in safeguarding decentralized projects, where administrative control and key management play critical roles in overall platform security.
Bloomberg will continue to monitor updates regarding the Drift hack and its implications for the broader crypto industry.