{"id":6531,"date":"2023-05-21T15:10:25","date_gmt":"2023-05-21T15:10:25","guid":{"rendered":"https:\/\/www.bitrabo.com\/community\/hackers-breach-security-of-approved-crypto-blender-tornado-cash\/"},"modified":"2023-05-21T15:11:59","modified_gmt":"2023-05-21T15:11:59","slug":"hackers-breach-security-of-approved-crypto-blender-tornado-cash","status":"publish","type":"post","link":"https:\/\/www.bitrabo.com\/discover\/hackers-breach-security-of-approved-crypto-blender-tornado-cash\/","title":{"rendered":"Hackers Breach Security of Approved Crypto Blender Tornado Cash"},"content":{"rendered":"\n<div>\n<p>In an unexpected turn of events, Tornado Cash, a prominent service that helps users hide cryptocurrency transactions, has fallen victim to hackers who took control over the platform through a malicious governance proposal. The attack has raised concerns about the safety and reliability of decentralized systems. Binance, one of the largest crypto exchanges, temporarily suspended the deposits of the protocol\u2019s governance token, TORN, following the attack.<\/p>\n<h2><span class=\"ez-toc-section\" id=\"Governance_Exploit_Grants_Hackers_Complete_Control\"><\/span>Governance Exploit Grants Hackers Complete Control<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Security researcher from Paradigm, Samczsun, revealed on Twitter that the attacker manipulated the governance mechanism, granting themselves 1.2 million fraudulent votes, which exceeded the 700,000 legitimate votes. This exploit gave the perpetrator full control over Tornado Cash\u2019s governance functions.<\/p>\n<p>Tornado Cash works as a blockchain protocol controlled by a distributed network of computers, while its governance token, TORN, allows holders to vote for protocol changes. As the attacker wielded overwhelming power, they took advantage of the situation. Samczsun highlighted the potential for malicious activities following the takeover.<\/p>\n<blockquote>\n<p>Now that they have all the votes, they can do whatever they want. In this case, they simply withdrew 10,000 votes as TORN and sold it all.<\/p>\n<\/blockquote>\n<p>The attack had an immediate impact on the crypto ecosystem, with Binance temporarily suspending TORN deposits. Tornado Cash has long faced accusations of being a preferred tool for hackers and criminals seeking to launder illicit funds. Since its inception in 2019, about $8 billion has been funneled through the service, data from Dune Analytics show. These figures, combined with the recent exploit, underscore the pressing need for robust security measures in the crypto industry to protect users&#8217; funds and maintain the integrity of decentralized platforms.<\/p>\n<h2><span class=\"ez-toc-section\" id=\"Tornado_Cash_Also_Faced_Sanctions_Last_Year\"><\/span>Tornado Cash Also Faced Sanctions Last Year<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Tornado Cash also faced scrutiny last year when the US Treasury Department imposed sanctions on the protocol. The agency accused Tornado Cash of aiding North Korean hackers in laundering illicit gains, with the notorious Lazarus Group, known for its cybercriminal activities, allegedly laundering about $450 million through the service.<\/p>\n<p>The aftermath of the Tornado Cash governance takeover raises questions about the security and resilience of decentralized platforms. It highlights the importance of implementing robust security protocols and conducting thorough audits to mitigate the risk of governance exploits. Incidents like this serve as a reminder of the ongoing challenges and the need for constant vigilance in safeguarding users\u2019 funds and maintaining the trust and adoption of decentralized systems. As news of the attack spread, the TORN token\u2019s value plummeted by 34% and was trading at $4.52 at the time of writing.<\/p>\n<figure style=\"width: 2768px\" class=\"wp-caption aligncenter\"><figcaption class=\"wp-caption-text\">Tornado Cash (TORN)\u2019s price moving sideways on the 4-hour chart. Source: TORN\/BUSD on <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/www.tradingview.com\/chart\/HSuSIPeM\/?symbol=BINANCE%3ATORNBUSD\">TradingView.com<\/a><\/figcaption><\/figure>\n<p><em>-Featured image from Unsplash, Chart from TradingView<\/em><\/p>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>In an unexpected turn of events, Tornado Cash, a prominent service that helps users hide cryptocurrency transactions, has fallen victim to hackers who took control over the platform through a malicious governance proposal. The attack has raised concerns about the safety and reliability of decentralized systems. Binance, one of the largest crypto exchanges, temporarily suspended [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":6533,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"slim_seo":{"title":"Hackers Breach Security of Approved Crypto Blender Tornado Cash - Bitrabo","description":"In an unexpected turn of events, Tornado Cash, a prominent service that helps users hide cryptocurrency transactions, has fallen victim to hackers who took cont"},"footnotes":""},"categories":[316],"tags":[651,652,649,654,504,648,650,653],"class_list":["post-6531","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-crypto-news","tag-approved","tag-blender","tag-breach","tag-cash","tag-crypto","tag-hackers","tag-security","tag-tornado"],"acf":[],"_links":{"self":[{"href":"https:\/\/www.bitrabo.com\/discover\/wp-json\/wp\/v2\/posts\/6531","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.bitrabo.com\/discover\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.bitrabo.com\/discover\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.bitrabo.com\/discover\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.bitrabo.com\/discover\/wp-json\/wp\/v2\/comments?post=6531"}],"version-history":[{"count":0,"href":"https:\/\/www.bitrabo.com\/discover\/wp-json\/wp\/v2\/posts\/6531\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.bitrabo.com\/discover\/wp-json\/wp\/v2\/media\/6533"}],"wp:attachment":[{"href":"https:\/\/www.bitrabo.com\/discover\/wp-json\/wp\/v2\/media?parent=6531"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.bitrabo.com\/discover\/wp-json\/wp\/v2\/categories?post=6531"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.bitrabo.com\/discover\/wp-json\/wp\/v2\/tags?post=6531"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}