The figures from Q1 2026 are scary on their face – $450 million went through 145 events, twelve in two weeks Follow Drift work alone. But the headline figures hide the vast changes taking place beneath them.
Crypto security problem has moved.
The Code is Staying Safe. People are not.
The damage of the Smart contract fell 89% year on year in Q1 2026, according to data from DefiLlama. The detectors are working, and the protocol architecture is progressing.
It didn’t matter. Hackers pulled $450 million anyway, because they stopped attacking the code and started attacking the people who write it.
Phishing and social engineering accounted for $306 million of Q1’s losses, nearly two-thirds of the total, on Hacken’s quarterly security report. One hack in January cost $282 million without touching a single line of code — a fake call and a user who gave away their credentials.
Six of the study protocols were broken in the same quarter. One performed more than 18 tests before being interrupted.
The Drift Hack Was A Six Month Project
The huge usage of DeFi per year makes this story just right.
On April 1, Drift Protocol is lost $285 million. TRM Labs determined that the attackers were DPRK-linked operatives, tracked by UNC4736, who spent six months targeting their collaborators before killing them. One was compromised by a bad database. Someone downloaded the device’s software via Apple’s TestFlight.
There is no code threat, but basically six months of fooling people.
Also Read: Ripple CTO Says Cold-Proof Stablecoins Won’t Work as Circle Misses $285M Drift Hack
Twelve Protocols, each Vector
The two weeks following Drift showed the extent of the problem.
The CoW exchange was brought down by a DNS hijack. Hyperbridge lost nearly $237,000 after fake credentials enabled the attackers to generate nearly a billion tokens. Zerion was involved in another DPRK social engineering project, losing $100,000. Silo V2 fell into the hands of oracle.
Dango lost $410,000 due to errors in his insurance contract. KuCoin reserves were used to spend $9.5 million. Kraken was hacked – the behavior was done, money was not at stake, but the experiment was real.
Diversity is important because this is not a one-size-fits-all trend. It’s every way to go together.
A New Security Question
Sherlock Report Q1 2026 wrote the first known work of artificial intelligence written by AI. Hacken confirmed that DPRK operatives took more than $40 million through fraudulent activities alone.
The industry has spent years questioning whether protocols have been evaluated.
The question now is whether anyone who has access to these protocols is monitored, and whether anyone can find out if they had them.
Continue Reading: CLARITY Act Removed From Senate Agenda: Biggest Crypto Bill Misses Its Last Chance?
Trust CoinPedia:
CoinPedia has been providing accurate and timely cryptocurrency and blockchain updates since 2017. All content is created by our team of expert researchers and journalists, following strict Editorial guidelines based on EEAT (Effectiveness, Expertise, Validity, Trustworthiness). Each article is checked against the standard to ensure accuracy, transparency, and reliability. Our review policy ensures an unbiased review when we develop exchanges, platforms, or tools. We strive to provide timely updates on everything crypto & blockchain, from startups to industry executives.
Investment Disclaimer:
All opinions and information shared represent the author’s opinion on market conditions. Please do your own research before making any financial decisions. Neither the author nor the publisher is responsible for your financial decisions.
Offers and Promotions:
Sponsored content and affiliate links can be viewed on our website. Advertisements are clearly identifiable, and our content is not independent of our advertisers.
