Drift says $270 million exploit was a six-month North Korean intelligence operation
Drift Protocol revealed that a $270 million exploit was the result of a sophisticated six-month infiltration by a North Korean state-affiliated group.Summary
Drift Protocol has disclosed that a $270 million exploit was orchestrated by a North Korean state-affiliated group, identified as UNC4736, following a six-month intelligence operation. The attackers established credibility by posing as a quantitative trading firm, engaging in months of professional interactions, and even meeting Drift contributors in person at global industry conferences. The breach was executed by compromising developer devices through malicious software and a vulnerability in code editors, allowing the attackers to bypass multisig security measures. This incident highlights significant risks to DeFi protocols that rely on multisig governance, as sophisticated actors are increasingly willing to invest substantial time and capital to build trust before launching attacks.
(Source:CoinDesk)