Could the Solana-based Drift $285 million hack have been prevented earlier? The Solana Foundation and some security researchers certainly believe so.
As a result, the Foundation has introduced a two-tiered ecosystem-wide security initiative to anticipate and address potential attacks against major protocols proactively.
The first layer is called Solana Trust, Resilience, and Infrastructure for DeFi Enterprises (STRIDE). It will assess, monitor, and escalate security concerns across Solana DeFi projects with over $10M in TVL (total value locked).
In addition, it will establish security standards for every Solana protocol, including independent assessments and public disclosures of findings.
For protocols with $100M in TVL and above, the Solana Foundation will facilitate formal security verification. The objective is to identify threats before they escalate into incidents. But the security measures don’t stop at monitoring threats actively.
The second tier, known as SIRN (Solana Incident Response Network), consists of security firms and researchers dedicated to safeguarding the entire ecosystem and responding to security incidents swiftly.
Some of the security firms involved include Asymmetric Research, OtterSec, Neodyme, Squads, and ZeroShadow. Overall, the enhanced security measures aim to help investors assess the risk associated with the protocols they engage with.
Can Solana Regain Investor Trust?
The comprehensive security upgrade across the ecosystem follows the $285M loss by Drift. The hack was attributed to North Korea and involved social engineering tactics spanning 6 months.
Security experts from TRM Labs pointed out that Drift missed its ‘reaction window’ and failed to act promptly to prevent the incident despite prior warnings.
Furthermore, some experts suggested that conducting thorough background checks on threat actors, who reportedly interacted with Drift at industry events, could have averted the incident.
In response, key players in the ecosystem welcomed the security measures. Allan Marshall, CEO of Upexi, a Solana treasury firm, remarked,
Every enterprise I’ve spoken to prioritizes the readiness of blockchain security and infrastructure for their requirements above all. It’s encouraging to see Solana enhance its infrastructure to attract more institutional players.
Similar sentiments were echoed by other supporters, emphasizing trust as a cornerstone of DeFi and adoption.
Despite the Drift incident being public for a week, Solana’s stablecoin supply remained stable at $14B, indicating that DeFi liquidity experienced only a minimal 0.19% decrease.
In essence, investors did not withdraw from Solana following the Drift incident. The question now is whether the new security enhancements will instill more confidence moving forward.
Key Takeaways
- The Solana Foundation has launched a new 24/7 security threat monitoring and response network for its DeFi protocols.
- Emphasis will be placed on protocols with total assets of $10M and above to reduce security incidents and enhance investor trust.