Kelp claims that LayerZero approved the setup it blamed for $292 million bridge hack
Kelp DAO claims LayerZero approved the setup linked to a $292M hack.
CoinDesk1 min read
Drift outlines a recovery plan for users after $295 million DPRK-linked exploit
TL;DR
Drift Protocol has announced a recovery plan for users affected by a $295 million exploit linked to a DPRK hacking group. The plan includes issuing recovery tokens for verified losses and a recovery pool funded by various sources.
Key points
- Drift Protocol announced a recovery plan for a $295 million exploit
- The exploit is linked to a DPRK hacking group
- Recovery tokens will represent verified user losses
- A recovery pool will be funded by various sources
- Legal efforts to recover funds are ongoing
Mentioned in this story
Drift ProtocolDPRKMandiantTether
Drift Protocol announced Tuesday the implementation of a recovery plan for users affected by a $295 million exploit on April 1, which it attributed to the North Korea state-backed DPRK hacking group identified by forensic firm Mandiant.
The attack led the protocol to suspend trading and borrowing immediately after the exploit. Drift said “the majority of stolen assets remain traceable and contained with limited successful off-ramping by the attacker,” with about 130,259 ETH (roughly $31 million) concentrated across four monitored wallets.
Drift’s statement explains that the recovery framework centers on issuing a token representing verified user losses. “Each recovery token represents $1 of verified loss,” Drift said, adding that holders would be able to redeem based on the value of a recovery pool funded over time.
That pool starts with roughly $3.8 million in remaining protocol assets and is expected to grow through exchange revenue, up to $127.5 million in support from Tether tied to performance, and up to $20 million from partners, Drift said. The pool will accrue until it matches total losses of about $295.4 million, at which point tokens can be redeemed at full value, it added.
Drift also said some funds have already been frozen, including about $3.36 million in USDC, while additional assets remain delayed in cross-chain transfers. Legal efforts to seize and reissue funds are ongoing, it said. The protocol also launched a public bounty offering 10% of recovered assets.
Drift plans to relaunch in the second quarter as a “security-first” exchange with changes including new multisig controls, time-locked operations, key rotation and reduced product scope focused on perpetuals trading.
“The Drift team is taking considered measures to ensure that users are made whole,” the team said, adding that final decisions will be subject to governance votes.
Drift’s recovery plan announcement comes a week after Aave said it was spearheading a coordinated DeFi recovery effort to rescue Kelp DAO, the second largest DeFi exploit this year, which was also carried out by North Korean-backed hackers. The so-called Lazarus group drained nearly $280 million. In this case, Aave has been able to garner span donations, deposits, and credit lines from across the crypto space.
Q&A
What is the recovery plan announced by Drift Protocol for the $295 million exploit?
Drift Protocol's recovery plan involves issuing tokens that represent verified user losses, with a recovery pool funded by protocol assets, exchange revenue, and support from Tether and partners.
How much of the stolen assets from the Drift Protocol exploit are traceable?
The majority of the stolen assets, approximately 130,259 ETH valued at around $31 million, are traceable and contained within four monitored wallets.
What legal actions is Drift Protocol taking regarding the exploit?
Drift Protocol is pursuing legal efforts to seize and reissue funds, while also offering a public bounty of 10% on recovered assets.
