en
Back to the list

Tornado Cash Attacker Funnels 360 ETH Through Crypto Mixer After Weekend Governance Exploit

source-logo  en.ethereumworldnews.com 22 May 2023 10:56, UTC

Summary:

  • The Tornado Cash attacker swapped 483,000 TORN tokens for 360 Ether before sending the ETH back to the Ethereum-based crypto tumbler.
  • Wallets controlled by the exploiter still hold some 125 ETH and 38,300 TORN tokens lifted from the crypto mixer’s governance contract over the weekend.
  • The transactions come after the attacker hijacked Tornado Cash’s governance forum through an “emergencyStop” function in a malicious proposal.
  • The attacker also submitted a proposal that would seemingly return governance functionality to its original state.

The Tornado Cash attacker sent 360 Ether (ETH) to the Ethereum-based crypto mixer after swapping TORN tokens siphoned from the protocol over the weekend.

On May 20, an attacker hijacked the Tornado Cash governance functionality by using a malicious proposal. The proposal was built using the same coding logic as a previously passed proposal but held an “emergencyStop” function. This allowed the attacker to essentially take over the protocol’s governance system and obtain an inordinate number of voting power.

After granting themselves 1,200,000 votes – 700,000 more than the real votes from community members – the attacker stole hundreds of thousands of TORN tokens used to incentivize private relayers.

Notably, the attacker was not able to access individual pools or drain assets deposited into Tornado Cash, Paradigm research @samczsun said on Twitter.

First, what does this mean for Tornado Cash?

Through governance control, the attacker can:
– withdraw all of the locked votes
– drain all of the tokens in the governance contract
– brick the router

However, the attacker still can't:
– drain individual pools

— @samczsun.com (@samczsun) May 20, 2023

Later on May 21, the attacker swapped TORN tokens using to ETH using 1nch and other DeFi protocols before depositing the proceeds in Tornoda Cash. Wallets controlled by the exploiter still hold some 125 ETH and 38,300 TORN tokens lifted from the crypto mixer’s governance contract over the weekend, said Nansen data scientist Martin Lee.

From Nansen

Tornado Cash Attacker To Return Power?

The attacker posted a proposal that would seemingly undo the effects of Saturday’s heist and return power to the governance community. It’s unclear if the proposal is indeed legitimate or an attempt to prop up the price of TRON which trades above $4 on Monday.

Over 517,000 votes support the proposal set to conclude on May 26 at 2023 11:53:38 GMT.

In other Tornado Cash news, developer Alex Pertsev was released into home arrest in April nine months after Dutch police detained him on money laundering suspicions.

en.ethereumworldnews.com