Drift is the subject of an intrusion by North Korean-affiliated hackers who spent six months inside the company before executing an exploit that yielded $285 million, Decrypt reported.
The account frames the incident as a prolonged infiltration, with attackers maintaining access over an extended period prior to the theft.
Related reading
- Open-source AI agent OpenClaw is being used to run people's lives. Researchers say it has become a security d…
- Microsoft warns AI agents risk becoming "double agents" as it unveils security controls at RSAC
- Microsoft makes water utility cybersecurity programme permanent after pilot reveals sector's vulnerability
According to Decrypt, the attackers remained in Drift for six months before carrying out the exploit that resulted in $285 million being taken. The report highlights the length of the intrusion and the scale of the loss.
A prolonged dwell time can allow attackers to map systems, escalate privileges and time a large-scale extraction. Decrypt’s coverage centres on the timeline and the monetary figure; it does not provide additional operational details in the headline summary.
The recap
- North Korean hackers infiltrate Drift before a major exploit.
- Attackers extract assets worth $285 million during the exploit.
- Intrusion lasted six months prior to the $285 million exploit.