In response to a $285 million hack on a Solana-based decentralized exchange, allegedly perpetrated by North Korean hackers, the Solana Foundation announced measures to bolster security across major DeFi protocols. STRIDE, a new security initiative co-launched with Asymmetric Research, offers continuous threat monitoring for DeFi platforms holding over $10 million in total value locked (TVL). Protocols exceeding $100 million TVL will receive ‘formal verification,’ ensuring smart contract accuracy by rigorously evaluating all possible states and execution paths.
The STRIDE program—short for Solana Trust, Resilience and Infrastructure for DeFi Enterprises—assesses protocols against established security standards before providing sustained protection services. This development signals an increase in blockchain security infrastructure as attackers increasingly target the substantial billions locked within Solana with more advanced tactics.
STRIDE’s launch coincided with the introduction of the Solana Incident Response Network (SIRN), a collective of security firms including Asymmetric Research, OtterSec, Neodyme, Squads, and ZeroShadow. The SIRN aims to offer rapid defense solutions for the ecosystem, evolving through real-world feedback, with its initial version already operational.
The urgency is highlighted by Drift Protocol’s recent breach, where attackers siphoned $285 million in less than 12 minutes on April 1. It was later revealed that North Korean hackers had spent half a year infiltrating Drift’s systems before executing their plan.
Such incidents demonstrate why blockchain networks like Solana are stepping up to ensure broader ecosystem security instead of leaving individual protocols to fend for themselves. STRIDE’s tiered approach, based on TVL thresholds, shows how layer-1 networks institutionalize security as decentralized finance evolves. By allocating resources according to risk, the initiative recognizes that high-value protocols require more robust defenses than smaller ones.
This strategy acknowledges that traditional smart contract audits alone are insufficient against the rapidly advancing tactics of adversaries targeting blockchain frameworks. The potential threat posed by AI advancements is also significant; for instance, an emerging Anthropic AI model named Claude Mythos has been flagged as a cybersecurity risk after causing concerns in cybersecurity stocks when leaked details surfaced. Conversely, AI tools recently helped resolve a Zcash software vulnerability.