Drift Protocol $285m hack: admin key wey dem compromise drain Solana vaults

Drift Protocol suffer one estimated $285m exploit on April 1, one of di biggest Solana DeFi hacks wey don happen. Di breach no be smart-contract bug. Investigators talk say dem compromise Drift Protocol admin key through social engineering and bad operational security, weh allow attackers comot pass internal controls. On-chain activity happen inside about 12 minutes across 31 transactions. With di stolen admin key, di attacker add new spot market (CVT), den set extreme withdrawal limits (including USDC and four oda markets) to make fake collateral withdrawal possible. Di attacker drain almost 20 vaults using di injected/forged collateral. Reported stolen assets across many tokens include USDC (~66.4m), JLP (~42.7m), MOODENG (~23.3m), USDT (~5.6m), USDS (~5.2m), JUP (~2.6m), RAY (583k), and WETH (477k). Some JLP fit don burn. PeckShield flag suspicious on-chain conversions early, and later monitoring show laundering moves into ETH. Market reaction quick and traders go risk-off: SOL drop nearly 9% intraday, and DRIFT also crash as withdrawals speed up and protocol halt deposits/withdrawals. Solana Foundation leaders say smart contract hold up, but di real problem be dem target users. Wormhole warn say some cross-chain transfer processing fit face delays even if Wormhole funds no directly at risk.
Bearish
Dis na direct security breach wey touch Drift Protocol, an e trigger immediate deleveraging for users: di platform stop deposits/withdrawals an traders rush come withdraw. Dat kain dynamic normally fit increase short-term sell pressure on DRIFT an cause contagion worry across Solana liquidity, wey match SOL sharp intraday drop. For short term, make you dey watch ongoing solvency/withdrawal updates an possible “risk-off” positioning for Solana DeFi markets wey dey hold Drift collateral. For long term, even if dem report say smart contracts withstand the attack, compromised key/operational-security incidents dey make risk premia stay high till governance, admin-key controls, an monitoring procedures get upgraded across connected venues.