The DeFi protocol Drift is making strides toward recovery following an extensive cyberattack that resulted in losses nearing $295 million. Suspected to be orchestrated by North Korean hackers, the attack led to a rapid cessation of all trading and lending activities on the platform, a move aimed at mitigating further risks.
What Was the Impact and Where Are the Funds Now?
In the breach, a staggering 130,259 Ethereum (ETH) was taken, distributed across four wallet addresses. Most of these digital assets are still under close watch, with hackers conducting only minimal asset movement to date. USDC worth approximately $3.36 million has been immobilized, and some digital currencies remain in limbo during cross-chain transfers. Legal strategies are being actively explored to recover these assets.
How Will Drift Salve the Losses?
Drift’s recovery approach involves issuing innovative “recovery tokens,” representing the dollar value of losses incurred by users. These tokens will gradually be settled from a recovery fund, which has around $3.8 million now, with plans to add exchange revenue regularly. An infusion of up to $127.5 million from Tether and contributions of up to $20 million from partners are also in the pipeline to meet the $295.4 million goal fully.
“Our primary objective is full user compensation, and significant recovery moves will be put to governance votes for community consensus,” the Drift team revealed.
Additionally, a public bounty initiative offers a 10 percent cut on recovered assets, incentivizing community assistance in the recovery endeavor.
Will Enhanced Security Measures Suffice?
Reopening is scheduled for Q2, with security improvements like multisignature controls and time-locked transactions set to be integral. The platform will pivot to focusing on perpetual futures contracts solely, enhancing its security posture.
Similarly troubling was the recent cyberattack on Kelp DAO via the known Lazarus group. This string of incidents in 2024, with the group attributed to stealing around $280 million, is a wake-up call for the DeFi world, pushing for tighter security and vigilance.
Bullet points emerging from these events include:
- Rapid implementation of legal recovery actions
- Launch of community-driven recovery token model
- Significant bounty for recovery-driven community participation
- Urgent drive for comprehensive technical and regulatory defenses
Within the community, there is cautious optimism around the proposed recovery steps, though the call for fast and open execution remains strong. As Drift prepares for its grand reopening, the focus is on whether enhanced measures can resuscitate stakeholder faith and lay a foundation for sector-wide security solvency.
