TornadoCash Attacker Proposes to Revert DAO After Gaining $650,000

  • TornadoCash hacker presents a new proposal to restore the DAO’s state of governance.
  • The new proposal comes after the hacker had obtained 483,000 TORN and exchanged over 379,000 to gain $650,000.
  • The cryptocurrency community is wary of the new proposal.

On May 22, the TornadoCash hacker deployed a new proposal that will seemingly restore the DAO’s state of Governance. According to Twitter user @0xdface, everyone will know the results on May 26, 2023, 11:53:38 GMT, “plus potentially 6 hours delay if some last minute changes in lead occur.” At the time of writing, there are over 500,000 votes in favor of the proposal.

However, the cryptocurrency community is wary of the proposal. Some have posited that the proposal may be a ploy to pump TORN so that the hacker could dump more tokens at a better price. @0xdface themselves presented that the proposal could either be a form of trolling or “an expensive but not disastrous lesson in Governance security.”

I mean note that we don’t even have a choice in regards to this proposal but it is still important nonetheless.

Previously, Tornadosaurus-Hex also attempted to restore the DAO after the attack. Hex proposed a solution to directly revert the changes that the attacker made to the contract. However, Hex warned that whoever proposes the solution risks their TORN becoming rugged, but if executed correctly, it could potentially save the protocol.

On May 20, a malicious user attacked the TornadoCash governance through a malicious proposal. The proposal granted the attacker 1.2M votes compared to the 700,000 legitimate votes in the DAO. Afterward, the attacker obtained 483,000 TORN, deposited 6,000 TORN into Bitrue, sold 379,300 TORN, and exchanged it for 375 ETH worth $680,000 at the time.

The attacker allegedly snuck in an extra function when they created their malicious proposal. The proposal used the same logic as a previous proposal that voters approved, and once the new proposal was approved by voters, the attack used the emergencyStop function to update the proposal logic in order to grant themselves the fake votes.


Post Views: 8

Source: https://coinedition.com/tornadocash-attacker-proposes-to-revert-dao-after-gaining-650000/