DriftInvestigationLinksRecentAttackToNorthKoreanHackers

How Koreans “Hacked” Drift Protocol for $285,000,000

North Korean hackers spent six months posing as employees of a “quantitative trading fund.”

They met with the Drift team at conferences, communicated via Telegram, and even invested $1 million of their own money to build trust.

Once the relationship became “operational,” they sent a repository containing a file that exploited a vulnerability in Visual Studio Code and Cursor — all it took was simply opening it.

After that, the hackers automatically wiped chat histories and traces of the attack, and around $285 million vanished from the protocol. Their main weapon wasn’t the exploit — it was six months of patience and social engineering.

$USDC