defirisk.co
rubric v1.7.0

Avg attacker reconnaissance time for peer-class protocols

Jito's assessment for RD-F-163 — scored gray on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

Analytical benchmark for Solana LST/staking protocol class. Drift exploit (UNC4736/DPRK, 2026-04-01) demonstrated 6-month social engineering reconnaissance targeting privileged access in a Solana protocol. USPD-class 78-day on-chain reconnaissance average is less applicable to Solana (no EVM mempool probe patterns). No Jito-specific on-chain reconnaissance signals detected. This factor is an analytical benchmark, not a real-time signal for a specific current threat. Gray because it is M-only curation without a current-protocol-specific observable.

Sources #

  • URL
    Chainalysis — Drift Hack AnalysisChainalysis Drift hack analysis — 6-month DPRK social engineering reconnaissance for Drift; provides peer-class benchmark for Solana protocol reconnaissance patternsretrieved 2026-04-29

Methodology #

Report the average number of days of attacker reconnaissance activity before a strike on peer-class protocols (lending/DEX/bridge/perps), sourced from the hack database.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol jito factor RD-F-163 score gray collected_at 2026-04-29 15:50:23