2 hours ago
2
A new security framework has been unveiled by the Solana Foundation to audit Solana-based protocols and strengthen risk monitoring.
Summary
- Solana Foundation introduced the STRIDE security framework to assess and monitor risks across DeFi protocols.
- A new incident response network has been set up to coordinate real-time threat intelligence and response efforts.
- The move follows recent exploits, including a $280 million loss at Drift Protocol.
According to the official announcement, the initiative was developed with Asymmetric Research and is called STRIDE. It is designed to assess and track the security of projects on Solana. The program sets a standard process to identify risks, monitor vulnerabilities, and escalate threats across the ecosystem.
Under STRIDE, protocols are evaluated across eight areas, including program integrity, governance controls, oracle dependencies, infrastructure setup, and operational practices. It also covers supply chain exposure, incident response readiness, and forensic capabilities tied to log management. Each participating protocol undergoes an independent review, with results disclosed publicly.
“This gives users, investors, and the broader ecosystem real transparency into the security posture of the protocols they interact with,” Asymmetric Research said.
Alongside STRIDE, the foundation unveiled the Solana Incident Response Network (SIRN), a coalition of security firms designed to coordinate real-time responses to active threats.
“Members will share threat intelligence, coordinate responses to active incidents, and contribute to the ongoing evolution of the STRIDE framework,” the foundation said in its statement.
Just days earlier, Drift Protocol suffered a $280 million exploit, which investigators linked to social engineering tactics tied to North Korean-affiliated actors.
Data from DefiLlama shows that over $168 million was stolen from 34 DeFi protocols in Q1 2026. While that figure is sharply lower than the $1.58 billion recorded during the same period in 2025, the persistence of attacks continues to highlight structural risks in decentralized finance.
While not explicitly referenced in the announcement, recent cases point to the increasingly complex tactics and the use of AI-driven tools to execute exploits. In January, Step Finance lost roughly $40 million after attackers leveraged automated agents to execute rapid transfers, amplifying the scale of the breach, according to reporting from KuCoin.
English (US) · 