Odaily Planet Daily reports that attorney Ariel Givner stated the $280 million attack on the Solana-based DeFi platform Drift Protocol could have been prevented through standard operational security procedures, and that this conduct may constitute civil negligence. The Drift team failed to follow basic security protocols, including not storing signing keys on physically isolated systems and failing to conduct due diligence on blockchain developers at industry conferences.
The Drift team posted on X that the attackers planned the operation for six months, initially contacting the team at a major crypto industry conference in October 2025. After building trust, the malicious actors compromised developer devices through malicious links and malware implants. Drift has confirmed with medium to high confidence that the attackers are the same group responsible for the Radiant Capital attack in October 2024. Class action advertisements targeting Drift Protocol are now circulating.