Drift Protocol $285M Heist 1/ On April 1, 2026, Solana's veteran protocol Drift experienced the largest attack in its history. This wasn’t a smart contract vulnerability—it was a six-month-long “real-life spy game.” 2/ The attackers disguised themselves as a quant firm, befriending the team at major in-person conferences and even investing millions of dollars to build trust. They weren’t just online acquaintances—they were “met in person, held meetings” kind of partners. 3/ The ultimate breach: Exploited a zero-click vulnerability in VSCode to infiltrate development devices. Tricked the team into installing a malicious TestFlight app. Used Durable Nonces to bypass cold wallet hardware protections, instantly seizing control. 4/ Lesson learned: Talent is the weakest link in DeFi. When development devices, test machines, and signing devices aren’t completely isolated, even cold wallets can’t protect your assets. People can be dangerous—don’t be naive.