Unknown individuals took control on May 20 of the control mechanism of the Tornado Cash Ethereum mixer.
Paradigm analyst samczsun has reported that the culprits have already started to extract TORN tokens from the protocol’s smart contracts.
The malicious proposition, with an accompanying code, enabled the utilization of the EmergencyStop function to modify the logic in order to accept it. This gave the attackers access to 1.2 million votes.
They were able to cancel blocked tokens, transfer resources to the controlling smart contract, and shut down the router.
While the hackers can’t withdrawal cryptocurrency from individual pools, they have already started to “merge” the blocked votes.
PeckShield experts have highlighted that the vast majority of extracted tokens were exchanged for Ethereum and moved to the Tornado Cash address. Some of the assets were relocated to the Bitrue platform.