Trust Crisis in Stablecoins After Drift Attacks: CCTP Controversy and Reassessment of Solana DeFi Risks

Structural issues behind selective disclosure

ZachXBT’s disclosure isn’t just pointing out Circle’s operational mistakes—it also undermines trust in centralized stablecoin issuers at the system level. Tens of millions of stolen USDC were bridged via CCTP during U.S. business hours without being intercepted. In contrast, Circle previously carried out “mis-targeted” freezes against 16 or more hot wallets.

The discussion has shifted from a single attack incident to a systemic reassessment of hybridized centralized risk: DeFi at critical junctures is still constrained by the issuer’s asymmetric power, while accountability standards are inconsistent.

On-chain data lays out a clear timeline: during the Drift attack in the range of about $270 million to $350 million, the cross-chain redemption from Solana to Ethereum was not interrupted. The TVL before the Drift attack was about $500 million, meaning there was a substantial liquidity exposure.

The incident quickly spread, with more than 15 top accounts reposting and supporting the criticism of Circle. The anger has concentrated on two points: lack of decisive action and inconsistent standards compared with historical freeze cases. On-chain analysts have compared this event to Circle’s rapid intervention in other contexts, pointing to a policy gap of “compliance-sounding optics, but light on real-time security.”

Against the backdrop of Solana TVL rebounding, this may be the “contagion” concern triggered by what could be the largest safety incident for native Solana DeFi. However, for now, the net outflows of related protocols such as PiggyBank and Elemental DeFi remain limited.

• “Solana is dead” is noise: in 2022, when Wormhole was hacked for $326 million, it didn’t end that chain; this time won’t either. Solana’s performance advantage is still there, but builders need to put “security first” ahead of “scale first.”
• Read the context: before the incident, the key addresses showed no abnormal fund flow patterns; it looks more like a problem caused by an internal vulnerability. My view is: if Circle chooses to trace and intervene, the probability of partial USDC recovery is 60–70%.
• Trading perspective: in the short term, you can consider buying SOL on dips. Funds are flowing back into Jito and Kamino—type protocols that have been audited and have clearer risk boundaries. These protocols have already disclosed that they have no direct exposure.

Market disagreement and re-pricing of asymmetric risk

Market views have diverged; positions have shifted from “buying the dip” to “prudently lowering risk control positions.” The table below lays out the logic, evidence, and re-pricing paths for each side:

The underlying logic behind this re-pricing split is a three-part linkage of evidence, narrative, and position adjustments. Those who think this is an “isolated incident” and ignore cross-protocol dependencies face negative exposure brought by subsequent information disclosures.

Bottom-line conclusion: if you’re only thinking of entering now due to the initial sentiment, the timing is already late. You should participate in Solana’s repair rally through “hardening protocols.” Long-term holders need to diversify stablecoin risk exposure. This turmoil has weakened the “gatekeeper” narrative around USDC, but it hasn’t shaken the ecosystem’s overall vitality.

My view: getting involved in this narrative now is already “late.” Those with the real relative advantage are the “builders”—teams that can front-load security and audits, then iterate quickly to higher compliance and risk-control standards.