Drift Protocol Secures $150M Tether-Led Bailout After Massive Hack

NEW YORK, NY – April 16, 2026 – In a landmark move for the decentralized finance (DeFi) sector, Drift Protocol today announced a strategic collaboration with stablecoin issuer Tether and other partners to secure nearly $150 million in a comprehensive recovery and relaunch plan. The initiative follows a devastating exploit on April 1 that resulted in approximately $295 million in user losses, marking one of the largest security incidents in crypto this year.

The proposed support package, which includes up to $127.5 million from Tether and an additional $20 million from other partners, is designed not only to make users whole over time but also to facilitate Drift’s re-emergence as the largest perpetual futures exchange on Solana, with a pivotal strategic shift to using Tether’s USDT for settlement.

“We made a commitment to our users that we would find a path to recovery, and this collaboration with Tether is intended to give us the resources to deliver on that on an accelerated timeline,” said Cindy Leow, Co-Founder of Drift. “This collaboration reinforces confidence in Drift as a critical trading platform on Solana and demonstrates Tether’s confidence in Drift’s technology and growth.”

Anatomy of a Sophisticated Attack

The April 1st incident was far from a typical smart contract bug. Blockchain security analysts have characterized it as a sophisticated, long-term social engineering operation, with on-chain evidence pointing towards actors previously linked to North Korea. The attack exploited human trust and a little-known feature of the Solana blockchain rather than a flaw in Drift's core code.

According to post-mortem analyses, the attackers spent months infiltrating the Drift ecosystem, posing as a quantitative trading firm and building relationships with team contributors. This trust was leveraged to trick security council members into pre-signing seemingly benign transactions using Solana's "durable nonces" feature, which allows transactions to be executed long after they are signed.

Having gained this unauthorized administrative control, the attackers whitelisted a worthless token they had created, artificially inflated its price through wash trading, and deposited it as collateral. They then proceeded to drain the protocol of its real assets, including USDC, SOL, and ETH, in a rapid series of 31 transactions over just 12 minutes. The attack underscored a growing trend in crypto security, where human and operational vulnerabilities have become as critical to defend as the code itself.

A Lifeline from a Stablecoin Giant

The nearly $150 million support package is structured to prioritize user recovery while ensuring Drift’s long-term viability. The plan is multifaceted, consisting of a revenue-linked credit facility, an ecosystem grant, and direct support for market liquidity.

A substantial portion of the capital will establish a dedicated user recovery pool, which will be further funded by a significant share of the exchange’s revenue upon relaunch. This revenue-driven model is intended to address the $295 million in outstanding user losses over time as the platform regains its trading volume.

“Our decision was grounded on the understanding that Drift’s underlying protocol, team, and market position remain intact,” stated Paolo Ardoino, CEO of Tether. “This proposed facility is intended to align incentives from the outset – prioritizing user recovery while supporting Drift’s ability to operate and grow. We believe Drift can re-emerge as one of the most important trading platforms on Solana, and this collaboration reflects that conviction.”

In addition to the credit facility, Tether is providing an ecosystem grant to fund reduced trading fees and other user incentives, designed to attract traders back to the platform. Tether will also extend a USDT support facility to designated market makers, a crucial step to ensure deep and liquid markets from the moment the protocol relaunches.

The Path to Relaunch and Recovery

Alongside the financial lifeline, Drift Protocol has published a detailed Incident Recovery Update outlining a hardened security posture for its relaunch. The protocol, which has been paused since the exploit was discovered, will not resume operations until these measures are fully implemented and audited.

Key security enhancements include undergoing independent audits from two separate firms, implementing stricter operational security for key management and team access, and overhauling its multisignature system. Critically, the use of long-term durable nonces—the feature at the heart of the exploit—will be disabled for critical administrative actions, which will now be protected by time locks and real-time alerts.

For affected users, Drift plans to issue a special “recovery token” representing a claim on the user recovery pool. This token will be transferable, providing users with a potential path to liquidity even before the recovery pool is fully funded. The team has also committed to channeling any funds recovered through law enforcement and blockchain forensics partners directly into this pool.

A Strategic Shift in the Solana Ecosystem

Perhaps the most significant long-term consequence of the deal is Drift’s strategic pivot to using USDT for settlement. The move, a condition of Tether’s investment, represents a major shift in the stablecoin landscape on Solana, where Circle’s USDC has held considerable sway.

The decision comes after community debate surrounding Circle’s response to the hack. While hackers moved over $200 million in stolen USDC to Ethereum, Circle maintained its policy of only freezing assets with a formal legal order, a stance that drew criticism from some corners of the community who hoped for faster intervention.

Tether's proactive role in architecting and funding Drift’s recovery presents a stark contrast and a powerful strategic play. By stepping in as a financial backstop, Tether not only expands USDT's utility to Drift’s 175,000 users but also positions itself as a crucial partner for ecosystem stability. This intervention could set a new precedent for how major stablecoin issuers engage with the DeFi protocols that rely on their assets, moving beyond passive issuance to active, strategic investment and support. For the Solana ecosystem, the relaunch of a more secure, USDT-backed Drift Protocol could mark the beginning of a new chapter of growth and resilience.