Svmuu News Lawyer Ariel Givner stated that the $280 million attack on the Solana-based DeFi platform Drift Protocol could have been prevented through standard operational security procedures, and this failure may constitute civil negligence. This is due to the Drift team's failure to follow basic security protocols, including not storing signing keys on physically isolated systems and a lack of due diligence regarding blockchain developers at industry conferences.
The Drift team posted on X, stating that the attacker planned this operation for 6 months, initially contacting the team at a major cryptocurrency industry conference in October 2025. After building trust, the malicious actor hijacked a developer's device through a malicious link and a Trojan implant. Drift has confirmed with medium-to-high confidence that the attacker is the same group responsible for the Radiant Capital attack in October 2024. Currently, advertisements for a class-action lawsuit against Drift Protocol have begun circulating.