North Korean Hackers Use AI Social Engineering in $280M Drift Protocol Exploit

North Korean state-sponsored hackers executed a devastating $280 million exploit against Drift Protocol using sophisticated AI-enabled social engineering techniques. The attack targeted Ethereum-based infrastructure through a combination of smart contract vulnerabilities and human manipulation tactics.

The hackers spent weeks infiltrating Drift Protocol's development team through carefully crafted personas and AI-generated communications. Sources indicate the attackers used deepfake technology and automated social engineering tools to build trust with key personnel before exploiting critical smart contract weaknesses.

This represents the second major social engineering attack within 30 days, suggesting North Korean cyber units have weaponized AI for crypto operations. The $280 million loss ranks among the largest DeFi exploits of 2026, devastating Drift Protocol's treasury and user funds.

Ethereum gas fees spiked during the exploit as automated systems attempted to frontrun the attack. DRIFT token collapsed 89% in post-exploit trading, with over $50 million in liquidations cascading across lending protocols.

Security firms warn this attack pattern signals a new era of AI-enhanced crypto warfare. Teams should implement multi-signature controls, segregate social media access, and verify all communications through separate channels. The sophistication suggests state-level resources targeting DeFi infrastructure.