Drift Protocol Exploited for $270M in Solana’s Biggest DeFi Hack of 2026

Drift Protocol, a perpetuals DEX built on Solana, has been exploited for an estimated $270 million in what appears to be the largest DeFi hack of 2026. The Drift team confirmed the attack on April 1, posting on X: “We are currently investigating. Please do not deposit funds into the protocol while we investigate. This is not an April Fools joke.” Operations have been halted while the investigation continues.

What the Attacker Did With the Funds

On-chain analytics platform Looksonchain traced the stolen assets to wallet address “HkGz4K,” where the attacker began systematically converting the haul into USDC before bridging it to Ethereum and buying ETH. At time of writing, Looksonchain’s updated figures show the attacker had accumulated 38,820 ETH worth approximately $82.6 million, up from an initial purchase of 19,913 ETH valued at $42.6 million. The cross-chain pivot is deliberate and fast. Whoever did this knew the exit route before they pulled the trigger.

Blockchain cybersecurity researcher Vladimir S told Cointelegraph the likely cause was a private key leak targeting multiple Drift vaults, though the Drift team has not officially confirmed the attack vector. Source estimates vary between $200 million and $285 million, with Looksonchain’s $270 million figure currently representing the most granular on-chain accounting. The Block’s early $200 million floor and Decrypt’s $285 million ceiling reflect data captured at different points as the drain was still active.

Live Crypto PricesUpdated 3 min ago

SOL

$85.32

▲1.47% (24h)

BTC

$77,253.00

▲1.44%

ETH

$2,107.85

▲1.87%

XRP

$1.35

▲1.36%

ADA

$0.2447

▲2.17%

Prices via CoinGecko

SOL Drops and the Wider Picture

SOL fell 5.34% over the past 24 hours to $79.51 at time of writing, a drop that began before the exploit became public and accelerated as the news spread. The network itself remains technically functional, processing 2,871 transactions per second with 773 active validators and 73.7% of supply staked. The chain did not break. The protocol did, and that distinction matters for how you assign blame. This is not a network that was already thriving at the application layer, and a nine-figure exploit will not help that story.

The DeFi security record in 2026 was already deteriorating before today. A private key compromise, if confirmed, signals an operational failure rather than a smart contract flaw, which in many ways is harder to audit away. Sentiment will do what sentiment does: punish first, ask questions later. The $270 million figure is not confirmed final. Updates from Drift are expected.