Another wild story about Tornado Cash

TL;DR

On May 18, the Tornado Cash DAO accidentally voted for a malicious proposal.
Basically, the attacker served a proposal which was approved to be voted on, and then the sneaky attacker activated a ‘self-destruct’ function that replaced the original proposal with a new, evil one, giving them complete control of the vote.
Yesterday the attacker made one new proposal to possibly “restore the state of governance”.
Did the attacker want to shine a light on the project and drive up the price of TORN? Or did they provide a wake-up call for DAOs to conduct more in-depth audits of the proposals sent to them?

Full story

Crazy things happened to the Tornado Cash project late last week.

Tornado Cash is known for things like being banned by the US government.

Suffice it to say it’s controversial at the best of times (it’s a ‘mixing service’ on the Ethereum network that basically makes your crypto untraceable), but brace yourself because this story is wild.

On May 18, the Tornado Cash DAO accidentally voted for a malicious proposal.

This man explains it much better; but in short, the attacker served a proposal which was approved to be voted on, and then the sneaky attacker activated a ‘self-destruct’ function that replaced the original proposal with a new, evil one, giving them complete control of the vote.

They could then award themselves 1.2 million TORN (the tokens of Tornado Cash DAO) from the governance contract.

They traded 380,000 TORN Tokens for 372 ETH and – get this – returned it via Tornado Cash to make it untraceable!

By keeping the other 820,000 TORN tokens, they still have full control over the DAO – it’s a hostile takeover if we’ve ever seen one.

Yesterday the attacker made one new proposal to possibly “restore the state of governance”.

Which LED some people to believe that all this has been a ploy to put the token in the spotlight and increase its price.

At the time of writing, TORN is down more than 30% so if that was the case, it certainly doesn’t work that well…

The more likely scenario is that the attacker wanted to wake up DAOs to conduct more in-depth audits of the proposals sent to them.

(And maybe not allow proposals with a built-in ‘self-destruct’ feature?)

Source link

What's Hot

Not yet an altiation season! In the growing gap between Bitcoin and Altcoins

Cronos Tart Crypto Market Downtick on Friday as asset manager Canary Capital Files for CRO ETF

XRP set for price lighting, but only if bulls defend the key of $ 2.13.

Hodooi and Ice Open Network are a powerful alliance for Web3 Social Expansion

Transition to an internet supported by people

Disney+ Unlocks Web3 for 150m+ users with new perks program Driven by Dapper Labs

Soonchain works together with Fluxai to transform creativity into web3 gaming

Rei Network works together with Inference Laboratories to forge Trust Decentralized World with ZKML

American authorities charge six people in connection with alleged $ 66,000,000 Food Stamp -Fraud schedule

American authorities punish the Philippines-based company for alleged computer infrastructure for crypto pig breaking stop

FBI is looking for victims who are connected to FunNull Pig Butching Crypto Investment SCAM

JPMorgan Chase received a fine of $ 566,082 due to alleged not responding to regulator during the energy crisis

SEC -OFFICE LIGHTS THE POW FOR ETHEREUM Turn off in ETFs

Cronos Tart Crypto Market Downtick on Friday as asset manager Canary Capital Files for CRO ETF

XRP multi-time frame breakdown: here comes what is there

XRP -Price risks crash under $ 2 if the correction holds, here is why

XRP price objectives recovery – signs of strength arise

Bitcoin – Price extends losses – Is more disadvantage on the horizon?

What Is Asset Tokenization? How It Works and Why It’s Important

What Is DeFi 2.0 and Why It Matters

Crypto Margin Trading: How It Works and How to Manage the Risks

Wat is circulerende levering in cryptocurrency?

What Is a DEX (Decentralized Exchange)?

Trade 350 App: This Trade 350 App Sets New Standard in AI-Driven Trading with Unmatched Security and User Approval

How smart EOAs define the wallet experience

Advanced Modular Data Center Market size to reach USD 155.52 billion by 2033, with a CAGR of 17.52%

Understand whom you are really dealing with Socialprofiler online and offline: the new Instant AI Social Media Background Check Tool

BlackRock and Jiritsu Network collaborate to advance RWA tokenization

Agoria allows fans to get NFT ownership at the launch of an upcoming album

How Hedera [HBAR] Bulls can benefit from the breakout of this pattern

Apple’s Vision Pro headset: everything you need to know

Mind Network and Gaib ai launch coded AI Finance Initiative

Insights into Alameda’s financial stability in the FTX trial

DeeKay Kwon surprises collectors with the very first open edition

Top Insights

Not yet an altiation season! In the growing gap between Bitcoin and Altcoins

Cronos Tart Crypto Market Downtick on Friday as asset manager Canary Capital Files for CRO ETF

XRP set for price lighting, but only if bulls defend the key of $ 2.13.

What's Hot

Another wild story about Tornado Cash

TL;DR

Full story

Related Posts

Subscribe to Updates