The information provided on EL7.AI is for educational and informational purposes only and does not constitute financial advice.

We use cookies to improve your experience and serve personalized ads.

By clicking Accept, you consent to our use of advertising cookies. See our Privacy Policy for details.

CryptoMediumUpdated•Originally published 30 April 2026•Updated 1 May 2026•

1 min read

North Korean Hackers Infiltrate Drift to Steal $285 Million in Long-Term Breach

Key Facts

1North Korean state-backed hackers infiltrated Drift and stole $285 million after spending months working in-person at the firm.

2North Korean-linked hackers account for 76% of all crypto scam and hack losses in 2026.

about 1 month ago

Version History

Version 1about 1 month ago

What changed: Added confirmation from blockchain security firms regarding the targeting of employees in offline environments.

The crypto platform Drift has suffered a major security breach resulting in the theft of $285 million by North Korean state-backed hackers. Reports indicate that the attackers executed a sophisticated 'long con' strategy, embedding themselves as in-person employees for months to bypass internal security protocols. Blockchain security firms have now confirmed that the hack occurred after specifically targeting employees in offline environments. North Korean-linked hackers are estimated to account for 76% of all crypto scam and hack losses in 2026, with total stolen funds reaching $6 billion since 2017. This incident raises serious concerns regarding the security of DeFi platforms and their vulnerability to organized cyber threats. The breach underscores a tactical shift in hacking methods, moving beyond technical exploits to include direct human infiltration and offline social engineering.