Drift Hacker Moves SOL Again: What a Small Transfer Reveals About a $285M Exploit

CryptoBlockchainSecuritySolanaHackerActivityKYT

A wallet linked to the $285 million Drift Protocol exploit has recently shown new activity, transferring 185 SOL worth approximately $15,000 to ChangeNow on the Solana network. Although the amount is relatively small, such transactions often carry significant implications in blockchain security.

Why Hackers Start with Small Transfers

After major exploits, attackers typically avoid moving large sums immediately. Instead, they initiate small transactions to test whether exchanges or swap services can be used without triggering detection. These transactions help identify viable routes for future fund movements.

The Laundering Logic Behind Small Transactions

Small transfers are often the first step in a broader laundering strategy. By splitting funds across multiple transactions, chains, and services, attackers gradually obscure the origin of assets. This layered approach makes tracking significantly more difficult.

Why Solana Is Used as a Transfer Channel

Solana’s low fees and high throughput make it attractive for rapid fund movement. In multi-chain environments, attackers may also take advantage of differences in monitoring capabilities across networks, building more complex transaction paths.

The Critical Role of On-Chain Monitoring

This case highlights that risks extend beyond the initial exploit. Post-attack fund movements are equally important, and without continuous monitoring, early warning signals can easily be missed.

Trustformer KYT provides real-time transaction monitoring and behavioral analytics, enabling platforms to detect unusual patterns such as small test transfers. By leveraging Trustformer KYT, organizations can gain deeper visibility into fund flows and identify potential laundering activities before they escalate.

Moving Toward Proactive Security

As attack strategies evolve, DeFi platforms must shift from reactive responses to proactive risk management. Continuous monitoring, combined with stronger compliance frameworks, is essential to maintaining control over asset flows.

The latest movement from the Drift hacker is a reminder that even minor transactions can indicate larger risks ahead.

About Trustformer

Trustformer is a leading blockchain security and compliance technology company specializing in providing professional risk management and compliance solutions for the global cryptocurrency ecosystem. We have developed the cutting-edge Trustformer KYT (Know Your Transaction) platform, which integrates artificial intelligence, blockchain analytics, and regulatory technology to deliver comprehensive, accurate real-time transaction monitoring, risk assessment, and suspicious activity reporting services.

With deep industry expertise and technological innovation, Trustformer is dedicated to helping Virtual Asset Service Providers (VASPs), crypto financial institutions, and investors build a safer and more transparent crypto financial environment. We believe that driving compliance and trust through technology can contribute to the thriving growth of the global digital economy.