Carrot, the Solana-based yield protocol that built its identity around being the “yield operating system” for Solana DeFi, has announced it is shutting down—making it the first protocol-level casualty of the April 1 Drift exploit and the clearest example yet of how composability risk in modular DeFi can metastasize from a single exploit into the wind-down of an otherwise unaffected protocol.
In a five-post X thread, the Carrot team confirmed the decision: “This is certainly not the outcome we wanted, but the situation with the Drift exploit has proven to be catastrophic for our continued operations.”
What’s Being Wound Down
Carrot operated three core products that together formed an integrated yield stack on Solana:
- Boost — A leveraged yield product that allowed users to deposit yield-bearing assets such as JLP (Jupiter Perps LP), FLP, or ONyc as collateral and choose a leverage level, with the protocol automatically looping and borrowing to amplify yields.
- Turbo — Managed leveraged token exposure to assets including SOL, BTC, and GOLD, with dynamic leverage maintained automatically by the protocol.
- CRT — Carrot’s native yield-bearing receipt token, which represented user deposits and accrued yield from the underlying strategies.
All three relied on Drift Protocol — Solana’s largest perpetuals exchange before the exploit — as a core liquidity and yield venue. When Drift was drained, Carrot’s leverage strategies and CRT’s underlying value were directly impaired.
The 30-Day Timeline of Failed Stabilisation
Carrot’s shutdown was not immediate. The protocol spent 30 days attempting to stabilize after the contagion hit before concluding the operations were no longer viable.
- April 1 — The Drift exploit drains $285 million in 12 minutes, attributed to North Korea’s Lazarus Group by Elliptic and TRM Labs. Approximately 15-20 Solana protocols were affected; Carrot was directly exposed.
- April 2 — Carrot publicly confirms losses tied to the Drift exploit. The team announces that, assuming no recovery of funds, CRT holders face an estimated ~50% loss. The protocol moves to restrict withdrawals in certain markets, reduce leverage, and consolidate assets to support redemptions.
- April 1 to April 30 — Carrot’s TVL collapses from approximately $28 million to $2 million, per DeFiLlama data—a >90% decline in 30 days as users withdraw funds and positions are unwound. Liquidity steadily drains despite stabilization efforts.
- April 30 — Carrot announces shutdown. May 14 is set as the final user-withdrawal deadline before force-deleveraging.
The Shutdown Mechanics
The team has set May 14, 2026, as the deadline for users to voluntarily withdraw funds from Boost, Turbo, and CRT. After that date, the protocol will begin deleveraging all positions to 1x—effectively reducing all leveraged exposures to zero leverage to free liquidity for CRT redemption.
“Your deposited funds are still yours, but all leverage will be reduced to zero, freeing up all liquidity for CRT redemption,” the Carrot team wrote in the second post of the thread.
Critically, no management fees apply during the wind-down period, and any recovery from Drift will still be distributed as previously stated, on a proportional basis via an IOU token based on the April 1 CRT snapshot. Users who later redeem their CRT tokens still preserve their claim on any future Drift recovery distribution. There is no current timeline for when those distributions might occur, given Drift’s ongoing recovery process.
The Founder’s Closing Words
The Carrot team closed the thread with notably reflective language for a DeFi shutdown post:
“Over the past 2+ years it has been our mission to make DeFi easy and accessible for everyone. First with CRT, and then Carrot Lend with Boost and Turbo. Winding down is a hard decision for all of us that have poured so many hours and resources into Carrot.”
“I wanted to personally say thank you to everyone who has been a part of Carrot. Trust is earned with consistent integrity and reputation is built in challenging circumstances. I hope we’ve done that well throughout the lifetime of Carrot to today.”
The tone is unusual for the segment — most DeFi shutdowns either ghost the community or default to legal-template language. Carrot’s team chose to take public accountability for a failure that, per the postmortem facts, was not its own protocol’s design or security flaw but the consequence of being downstream of an exploit that occurred elsewhere.
Why Carrot Is the Test Case for Composability Risk
The broader significance of the Carrot shutdown sits in what it demonstrates about modular DeFi risk. The Drift exploit was not a code bug in a smart contract that Carrot integrated — it was a social engineering and durable nonce attack that compromised Drift’s admin multisig signers, allowing the attacker to whitelist a fake collateral token (CVT) and drain $285 million in legitimate assets across 31 transactions in 12 minutes.
Carrot integrated Drift for liquidity and yield strategies—a routine and economically rational architectural decision in 2025 Solana DeFi, when Drift was the largest perpetuals exchange on the chain. There was no way for Carrot’s smart contracts to defend against the upstream compromise. The downstream impact was approximately $8 million in TVL impairment—manageable in isolation, but combined with the resulting user trust collapse and the 90%+ withdrawal wave that followed, fatal to operations.
The pattern echoes broader 2026 DeFi contagion concerns: the Kelp DAO rsETH exploit in mid-April produced cross-protocol bad debt on Aave and Compound that triggered the DeFi United $300+ million coordinated rescue. The Drift contagion has produced the opposite outcome—no centralized rescue, no cross-protocol coalition, just sequential protocol wind-downs as affected operators conclude they cannot stabilize.
What’s Next for the Drift Recovery
Drift Protocol has secured up to $147.5 million in recovery support from Tether and partners, announced in mid-April, and is preparing a relaunch with USDT replacing USDC as the primary settlement asset. A new transferable token will be issued to affected users to distribute recovered value. The timeline for that distribution remains undefined, which is precisely why Carrot has structured its wind-down to preserve users’ rights to future Drift recoveries even after they redeem CRT.
Other Drift-exposed protocols — including Pyra (which lost all funds), Reflect Money, Ranger Finance, Piggybank ($106K reimbursed from team treasury), and Project0 — face their own independent decisions on whether to continue operations. Carrot’s shutdown sets a benchmark: a 30-day stabilization window, a 14-day user-withdrawal grace period, automatic deleveraging to 1x, and continued team commitment to managing future recovery distributions.
For the broader Solana DeFi ecosystem, the Carrot wind-down is the cleanest signal yet that the Drift contagion’s cost is not contained at the Drift protocol level. April 2026 has now seen approximately $630 million in DeFi losses across 25 incidents, the heaviest month since February 2025, with the Kelp DAO and Drift exploits accounting for more than 90% of the total.
Carrot’s final message, before signing off, was characteristic of a team taking the loss seriously: “Trust is earned with consistent integrity and reputation is built in challenging circumstances.” The question now facing every other Drift-exposed protocol is whether they can demonstrate the same—or whether further shutdowns follow.
Also Read: Wasabi Protocol Hack Drains $5M Across Ethereum, Base, and Blast
