Decentralized exchange Drift has confirmed that the massive theft of assets from its platform was not the result of a simple technical vulnerability, but rather a sophisticated social engineering operation allegedly orchestrated by North Korean intelligence agents. Reports on the total losses vary slightly, with The Block citing a figure of $280 million, while CoinDesk reports the total at $270 million.
Investigations reveal that the attackers spent months meticulously laying the groundwork for the heist. The hackers posed as a legitimate trading firm, spending six months building trust with the Drift team. During this period, they even held multiple in-person meetings with Drift contributors across various countries, using these face-to-face interactions to mask their true identities.
To further lower the platform’s defenses and gain access, the attackers even deposited $1 million of their own capital into the platform. This 'bait' remained undetected for half a year. Once the time was right, the attackers leveraged the credibility they had built to execute the exploit, siphoning off hundreds of millions of dollars.
Security Warning: Long-Term Infiltration Emerges as a New Threat
This incident highlights the severe challenges the crypto industry faces when dealing with state-sponsored actors. Unlike the lightning-fast attacks typically carried out via automated vulnerability scanning, these operations mimic legitimate business processes, making it nearly impossible for security teams to identify risks through standard code audits or routine checks.
Drift has now pointed to evidence linking the attack to North Korean-affiliated hacking groups. Such organizations have been frequently accused in recent years of using these precise, high-level tactics to infiltrate the crypto ecosystem to generate illicit funds. As the assets held by decentralized finance (DeFi) protocols continue to grow, this social engineering strategy—targeting core contributors and partners—has become one of the most vulnerable points in the industry's defense.
