North Korean Hackers Target Drift Protocol, Steal $285M

Pentesting News is reporting a sophisticated cyber heist targeting the Drift Protocol, a decentralized exchange. According to their analysis, North Korean state-sponsored actors allegedly spent six months meticulously infiltrating the protocol’s systems. This prolonged period of reconnaissance and exploitation culminated in a rapid drain of approximately $285 million worth of cryptocurrency. The extraction itself reportedly took a mere 12 minutes, highlighting the speed and efficiency these advanced persistent threats (APTs) can achieve once they have established a foothold.

The attack vector and specific vulnerabilities exploited are still under investigation, but the scale of the loss underscores the ever-present risks within the DeFi space. Pentesting News suggests this operation exemplifies the long-term strategic planning and patience employed by nation-state actors in pursuit of significant financial gain, often to fund their regimes. The sheer audacity of a six-month infiltration followed by such a swift, high-value theft is a stark reminder of the sophisticated adversaries operating in the cyber domain.