Tornado Cash DAO attack: a regulatory minefield for DeFi
Tornado Cash DAO is facing another suspected governance attack. L2BEAT researchers flagged the proposal as suspicious, and the timing is rough. Privacy protocols are already under legal pressure. Exchanges are watching. Investors are jumpy. My take: one bad proposal does not prove DAOs are doomed. But when governance controls real money, sloppy voting stops being a process flaw and starts looking like an attack surface.
L2BEAT researchers pointed to a Tornado Cash DAO proposal that sends users to an unverified contract. They called it “very unusual for Tornado Cash DAO proposals” and said it was a “clear indication that the proposal should be treated as malicious.” Hard to read that as a maybe. The proposer was also funded by Railgun, another crypto privacy protocol, four days before submitting it. ZK researcher Sergey Shemyakov asked people on X to review the proposal and said the logic looked “pretty convoluted.” Why does that matter? Because convoluted governance code is exactly where bad assumptions hide.
The proposal says it would create a new fee structure and “establish a brand-new dynamic deflationary economic model.” I’ll be honest: that phrase alone makes me slow down. Security Alliance researcher Pascal Caversaccio said the proposal appears to swap important addresses for fake lookalikes. The current DAO governance address, which holds $23 million of TORN tokens, would be replaced with an attacker-controlled address that has the same first 15 characters. The staking governance proxy contract would be swapped in the same way. Caversaccio said the fake governance address could “zero out any relayer’s balance at will.” He called it a “governance attack on Tornado Cash” and urged TORN holders to reject it. Most governance advice says voters should read proposals carefully. That’s only half right. Voters also need tooling that makes address substitutions painfully obvious.
Tornado Cash has seen this before. On May 20, 2023, a malicious proposal passed and gave an attacker control of most votes. The attacker sold about $800,000 of TORN for ETH, moved the proceeds through Tornado Cash, and then created another proposal to set their voting power back to zero. In 2024, Tornado Cash IPFS front ends were compromised with malicious JavaScript that leaked deposit data to a server controlled by the attacker. We tried to treat those as separate incidents. It broke. This proposal lands in the same old place: weak governance, privacy-tool politics, thin market patience, and a crowd that sells uncertainty quickly. When the SEC has gone after tokens before, prices have sometimes dropped 10% to 15% within 24 hours. TORN does not need much to make traders nervous.
The legal backdrop is messy too. The US Treasury sanctioned Tornado Cash in 2022, though that decision was later reversed. Developer Roman Storm was prosecuted last year for conspiracy to operate an unlicensed money-transmitting business. His case is still open. A motion for acquittal has not been resolved, and prosecutors want to retry two counts where the jury deadlocked. Add a suspected governance attack, and regulators get an easy line: privacy tools are risky and hard to supervise. Also easy to abuse, they will say. I do not think that is the whole story. Counter to the usual framing, the governance layer may be the weakest part here, not the privacy technology itself. It is often the story that moves policy, though.
Markets usually do not wait around for nuance. When regulators target an exchange or protocol, capital often moves into Bitcoin (BTC), stablecoins, or cash. Smaller tokens can fall 5% to 10% as traders cut risk. Is that unfair to projects that did nothing wrong? Yes. It still happens. Tornado Cash’s legal fights and security failures could also give regulators more reason to pressure other privacy projects, especially those with DAO governance, public token markets, exchange listings, and visible relayer infrastructure.
1/ A suspicious DAO proposal on Tornado Cash was created ~8hrs ago. Summoning @pcaversaccio (and everyone else curious) for an independent opinion!
Details in the thread below👇 pic.twitter.com/akCpfW4f6P
sergeyshemyakov, PhD 💗 (@sergeyshemyakov), June 25, 2026
On 2023/05/20 at 07:25:11 UTC, Tornado Cash governance effectively ceased to exist. Through a malicious proposal, an attacker granted themselves 1,200,000 votes. As this is more than the ~700,000 legitimate votes, they now have full control.https://t.co/nY87XmrYgT pic.twitter.com/h9qjc3xRqz
samczsun (@samczsun), May 20, 2023
What this means
The suspected attack hits the same weak spot Tornado Cash exposed in 2023: token governance can be gamed when voters miss the fine print. Short version: read the addresses. That risk is worse for privacy protocols because they already get more scrutiny. TORN holders have the most direct exposure. The proposal targets a governance address holding $23 million in TORN and could let an attacker wipe relayer balances. If the proposal gains support, or if the community looks disorganized, a 10% to 20% move in TORN would not be surprising. Yes, this sounds blunt. It should. This is the sort of headline that makes traders sell first and read later.
Investors should watch the vote and the legal response around Tornado Cash. Roman Storm’s case still matters, especially if prosecutors retry the two deadlocked counts. A new filing, Treasury statement, or SEC comment on DAO governance or privacy protocols could affect more than TORN. Traders should also watch TORN liquidity and support levels during the vote window. If the community rejects the proposal quickly, the damage may stay limited. If the vote drags on, volatility probably sticks around. My take: the vote result matters, but the cleanup process may matter more.