ETH

Crypto Mixer Tornado Cash Under Attack: Exploiter Seizes Governance Control

chain

Absolute control over the governance enables the exploiter to withdraw all the locked votes, drain all of the tokens in the governance contract, and brick the router.

BSCN

May 21, 2023

Tornado Cash, the decentralized crypto mixer, is facing yet another challenge as an attacker has reportedly seized control of the protocol's governance through a malicious proposal. 

On May 20, at 7:25 UTC, an attacker successfully granted themselves 1,200,000 votes through a malicious proposal. With the proposal receiving more than 700,000 legitimate votes, the attacker gained full control. The news was shared by @samczsun of research-driven technology investment firm, Paradigm. 

@samczsun disclosed that the attacker introduced an additional function to the malicious proposal, employing the same logic as a previously approved proposal. 

“Once the proposal was passed by voters, the attacker simply used the emergencyStop function to update the proposal logic to grant themselves the fake votes”.

Complete control over the governance allows the exploiter to withdraw all of the locked votes, drain all of the tokens in the governance contract, and brick the router. This, however, does not allow them to drain individual pools. 

Tornado Cash has confirmed on its forum that all funds held within the governance are potentially compromised. As a precautionary measure, users have been advised to immediately withdraw any locked funds. Additionally, in the early hours of today, PeckShieldAlert revealed that the Tornado Cash Governance Exploiter has deposited 6000 to crypto exchange Bitrue, and swapped approximately 380,000 $TORN for $ETH, and further transferred 372 $ETH into Tornado Cash. 

The exploit serves as a reminder for crypto investors and protocols to thoroughly evaluate proposal descriptions and logic.

What is Tornado Cash:

Tornado Cash is a decentralized and non-custodial privacy solution that allows users to send and receive Ethereum (ETH) anonymously. The protocol uses zero-knowledge proofs and other cryptographic techniques to ensure that transactions are untraceable and unlinkable.

Where to find Tornado Cash:

Website | Twitter | Telegram

Latest News

May 8, 2025

Magic Newton: Transforming Crypto Trading with AI and L2 Tech

May 8, 2025

GiveRep Airdrop on SUI: A Step-by-Step Guide

May 8, 2025

What is Pi Network’s May 14 Announcement?!

May 8, 2025

What is BabyDoge Properties?

May 8, 2025

Eclipse: Ethereum Security with Solana Speed

May 8, 2025

Humanity Protocol: Pioneering Decentralized Identity with Palm Scans and Blockchain

May 8, 2025

Vietnam Launches its First Homegrown Blockchain Network: Details

May 7, 2025

What Does Ethereum Pectra Upgrade Mean for the Ecosystem?

Project & Token Reviews

Learn about the hottest projects & tokens

View AllRight

Latest Crypto News

Get up to date with the latest crypto news stories and events

View AllRight

Join our newsletter

Sign up for the very best tutorials and the latest Web3 news.

Subscribe Here!
BSCN

BSCN

BSCN RSS Feed

BSCN (fka BSC News) is your go-to destination for all things crypto and blockchain. Discover the latest cryptocurrency news, market analysis and research, covering Bitcoin, Ethereum, altcoins, memecoins, and everything in between.

News

BitcoinEthereumSolanaBNBPI NetworkAltcoinsMemecoinsiGaming

About Us

Contact usAbout usPrivacy PolicyTerms of service

© 2025 BSCN. All rights reserved.