Six Months of 'Friendly' Conversations Cost Drift Protocol $280M in April Fools' Day Heist

Drift Protocol has finally spilled the beans on its April 1 exploit, and the details are quite the saga. The $280 million hack wasn't some lightning-fast DeFi robbery—it was a six-month-long romance between the protocol's contributors and a group of very dedicated attackers posing as a quantitative trading firm. Forget love at first sight; this was love at first conference badge scan.

It all started back in October 2025 at a major crypto conference, where these "traders" approached Drift contributors seeking integration. But unlike your typical conference small talk, this group kept showing up. And showing up. And showing up. At some point, you'd think someone would get suspicious. Apparently not.

Over the next half-year, they attended multiple global industry conferences with the Drift team, built a Telegram group, discussed trading strategies, and even onboarded an ecosystem vault while depositing over $1 million into the protocol. All perfectly normal behavior for a quantitative trading firm, right? Nothing says "we're here to steal your keys" quite like depositing real money to build trust. Textbook social engineering, complete with a Telegram group and matching lanyards.

The twist came when these friendly traders started sharing "tools"—