Tornado Cash DAO faces $23M governance attack tied to Railgun address

A governance proposal submitted to the Tornado Cash DAO on June 25 contains unverified code that researchers say could drain $23 million in TORN tokens and cripple the protocol's privacy infrastructure.

A suspicious governance proposal submitted to the Tornado Cash DAO on June 25 threatens to seize control of $23 million in TORN tokens, researchers warned.

"The proposal's target contract is unverified, which is very unusual for Tornado Cash DAO proposals and a clear indication it should be treated as malicious," L2BEAT researchers said in a public alert.

The proposal's author received funding through Railgun, a competing privacy protocol, four days before submission, on-chain records show. Security Alliance researcher Pascal Caversaccio went further, calling the proposal a "governance attack" designed to swap the DAO's governance address — which holds $23 million in TORN — with a spoofed lookalike sharing the same first 15 characters. A second contract change would let the attacker zero out relayer balances across the network, effectively breaking the privacy tool's core functionality.

If passed, the proposal would hand an attacker majority voting power over the DAO, repeating a playbook that succeeded in 2023 when a malicious proposal drained roughly $800,000 in TORN before the attacker laundered proceeds through Tornado Cash itself. TORN holders face a binary choice: reject the proposal or risk losing both treasury funds and the protocol's operational integrity.

The attack targets the DAO's governance layer, not the mixing pools themselves, meaning user funds in the privacy protocol remain safe for now. But the governance address at stake controls the DAO's decision-making power and its treasury — a single point of failure that, if compromised, could steer future votes and move funds.

Sergey Shemyakov, a ZK researcher who first flagged the proposal on X, described its logic as "pretty convoluted" and urged the community to scrutinize the code before voting. The proposal claims to introduce a "dynamic deflationary economic model" and a new fee structure — language Caversaccio dismissed as a cover for the address-swap exploit.

The Railgun connection has added another layer of suspicion. Railgun and Tornado Cash are competitors in the crypto privacy sector, though it remains unclear whether Railgun itself is involved or whether the proposer simply used the protocol to obscure their funding trail. No party has confirmed involvement either way.

The 2023 precedent

This is not the first time Tornado Cash governance has been targeted. In 2023, an attacker pushed through a malicious proposal that granted majority voting power, sold roughly $800,000 in TORN for ETH, and washed the proceeds through Tornado Cash itself. The following year, malicious JavaScript injected into the platform's IPFS front-end interfaces leaked sensitive deposit data to an attacker-controlled server.

Legal overhang

The governance drama unfolds alongside an unresolved legal case against Tornado Cash developer Roman Storm, who faces prosecution for conspiracy to operate an unlicensed money-transmitting business. A motion for acquittal filed in April remains unresolved, and prosecutors are seeking to retry two deadlocked counts. The legal uncertainty compounds the governance risk, making it harder for the community to focus on technical fixes.

Caversaccio's message to TORN holders is straightforward: vote no. Whether enough token holders are paying attention — and whether the DAO's governance structure can withstand another attack — will determine the protocol's immediate future.

This article is for informational purposes only and does not constitute investment advice.