Drift Protocol, which was hacked for $286M, has released its preliminary incident analysis, and ... it’s ALARMING.
The attack appears to have begun around six months ago with a highly sophisticated, in-person social engineering campaign. They met at crypto conferences and the attackers had well prepared online profiles. They posed as a quantitative trading firm and built a partnership with the Drift team.
During the integration process, they compromised Drift’s co-signers by sharing a malicious repository and their (fake) wallet application.
This is deeply concerning, and should serve as a serious wake-up call for the entire industry.
As presumed, it's attributed to a North Korea group.
Full prelimary report below.