Drift Protocol $285M Solana DEX waka na UNC4736

Drift Protocol tok say na dia Solana-based DEX don suffer one structured six-month intelligence operation, wey dem get “medium-high confidence” say UNC4736 do am. Di attackers bin dey pose as quantitative trading firm, dem dey coordinate for Telegram, and dem meet contributors face-to-face before dem build one working Ecosystem Vault inside Drift then trigger di exploit. Drift Protocol report say di intruders deposit pass $1M to gain trust, den dem drain about $285M. Plenty pools dem empty finish, including USDC, USDT, and ARB-related liquidity, plus wrapped assets like WETH, WBTC, wBNB, wbETH, and wstETH. During di incident, Drift pause deposits and withdrawals. For technical side, Drift Protocol point to possible entry ways like cloned vault frontend repo and one possible malicious TestFlight app, plus VSCode/Cursor-related vulnerability wey fit allow silent code execution. Drift add say dem freeze di remaining platform functions, remove compromised wallets from im multisig, and flag accounts with exchanges and bridge operators. For traders, main lesson be say Drift Protocol highlight say attackers dey shift to “intelligence-unit” style attacks wey dey target contributors, dev tools, and signer environments—so focus suppose dey more on transaction-intent checks and multisig security rather than only smart-contract audits.