Solana Foundation has introduced a new security program to strengthen its ecosystem after a major $270 million exploit.
Key Takeaways
- Solana Foundation launched the STRIDE program to improve DeFi security and monitoring.
- The move follows a $270 million exploit on Drift Protocol linked to a social engineering attack.
- New measures include 24 hour threat monitoring and an incident response network.
- The initiative aims to restore trust as SOL faces market pressure.
What Happened?
The Solana Foundation announced a major security overhaul, introducing the STRIDE program and a coordinated response network. The decision comes shortly after a large scale exploit hit Drift Protocol, exposing gaps beyond traditional smart contract audits.
The new system focuses on continuous monitoring, public risk evaluation, and faster response to threats across the Solana ecosystem.
Solana was built for security. As the ecosystem scales, so does our investment in the tools, standards, and support.
β Solana Foundation (@SolanaFndn) April 6, 2026
Today that commitment deepens with a new security program, active monitoring, formal verification for top protocols, and a new crisis response network.
Learn⦠pic.twitter.com/17M4TgqpsQ
STRIDE Program Introduces Structured Security Framework
At the core of this initiative is the STRIDE program, developed in partnership with Asymmetric Research. The framework evaluates protocols across multiple security layers, including access controls, governance risks, key management, and smart contract integrity.
Unlike traditional audits, STRIDE goes beyond code review. It introduces a multi pillar evaluation model that also considers operational and human vulnerabilities, which were central to the Drift exploit.
Importantly, all evaluation results will be published publicly, giving users and investors a clearer view of protocol risks. This transparency creates a shared benchmark for security across the ecosystem.
Protocols that pass the evaluation and hold over $10 million in total value locked will receive continuous 24 hour monitoring funded by the foundation. This monitoring is designed to detect suspicious activity early and reduce the chance of large scale losses.
For protocols exceeding $100 million in TVL, the foundation will fund formal verification, a mathematical method that tests every possible execution path in a smart contract. This adds a deeper level of assurance for high value applications.
Incident Response Network Aims for Faster Action
Alongside STRIDE, Solana introduced the Solana Incident Response Network, a coordinated group of security firms including OtterSec and Neodyme.
This network focuses on real time collaboration during security incidents. It enables faster communication between researchers, exchanges, and infrastructure providers, which could help limit damage during future attacks.
The importance of such coordination became clear after the Drift exploit, where response timing played a critical role. Onchain investigator ZachXBT criticized Circle Internet Financial for not freezing a large portion of stolen funds quickly enough.
While STRIDE improves prevention, the response network is designed to contain threats once they occur.
Drift Exploit Highlights Human Security Risks
The Drift Protocol incident revealed that technical audits alone are not enough. The attack did not exploit smart contract bugs. Instead, it relied on a six month social engineering campaign that compromised contributor devices.
Attackers gained access through a malicious repository and a fake application, eventually securing valid approvals for transactions that appeared legitimate onchain. This made detection extremely difficult.
Notably, even advanced tools like formal verification or onchain monitoring would not have prevented this type of attack. It exposed a critical gap between code security and human trust.
CoinLaw’s Takeaway
In my experience, this is one of the most important shifts I have seen from Solana. The focus is no longer just on speed or growth, but on building trust at scale. I found that many projects rely too heavily on audits, assuming code security equals full security.
What stands out here is the recognition that human error and operational gaps are the real weak points. STRIDE does not solve everything, but it pushes the ecosystem in the right direction by combining transparency, monitoring, and coordinated response.
If Solana executes this well, it could set a new standard for how DeFi ecosystems approach security going forward.
