News linked to this event type.
U.S. law firm Gibbs Mura has launched a class-action litigation investigation into the April 1, 2026, hack of Drift Protocol, reviewing potential investor claims against Circle Internet Financial. The attack resulted in the theft of approximately $280–285 million in assets. The attacker subsequently used Circle’s Cross-Chain Transfer Protocol (CCTP) to bridge over $230 million worth of USDC to Ethereum—Circle took no action to freeze the funds throughout the incident. Notably, just nine days prior, Circle had voluntarily frozen 16 business wallets in a separate civil dispute. Blockchain analytics firm Elliptic suspects the attack was carried out by a North Korea–backed hacking group. As a result of the breach, Drift Protocol’s total value locked (TVL) plummeted from $550 million to below $250 million, the DRIFT token price dropped more than 40%, and at least 20 DeFi protocols suffered indirect losses.
According to ZachXBT, BitcoinDepot filed an 8-K on April 6, 2026, stating that it discovered the theft of 50.9 BTC on March 23; on-chain tracking shows that 19 high-confidence theft addresses had already transferred a total of 54.45 BTC as early as March 20—3.55 BTC more than disclosed—and the funds ultimately flowed into KuCoin, indicating the company may have detected the anomaly three days late.
According to on-chain analyst PeckShield (@PeckShieldAlert), the attacker established a $15 million long position in $Fartcoin (totaling 145.24 million tokens) on Hyperliquid using four wallets. Subsequently, in a low-liquidity environment, the attacker deliberately triggered a “suicidal” liquidation, forcing activation of the ADL (Automatic Deleveraging) mechanism. As a result, the HLP liquidity pool was compelled to absorb toxic assets, generating bad debt and incurring approximately $3 million in paper losses. The HLP has lost roughly $1.5 million within the past 24 hours. PeckShield noted that the attacker likely executed cross-market hedging strategies in advance, meaning the actual net profit may significantly exceed the reported paper loss figure.
According to Decrypt, Bitcoin ATM operator Bitcoin Depot filed a disclosure with the U.S. Securities and Exchange Commission (SEC) revealing that it suffered a cybersecurity attack on March 23. Hackers infiltrated the company’s IT systems to obtain credentials for its digital asset settlement account and stole approximately 50.9 BTC—valued at roughly $3.665 million—from the company’s wallet. Following the incident, the company activated its incident response protocol, engaged external cybersecurity experts to conduct an investigation, and notified law enforcement authorities. Bitcoin Depot stated that its customer platform and user data remained unaffected. The company classified this event as a material matter, which may result in reputational damage and additional legal and regulatory costs.