Tornado Cash suffers backend attack, user deposits are at risk
ChainCatcher news, according to CoinDesk, Tornado Cash has suffered a backend attack, which has the capability to steal deposit data and deposit funds, putting user deposits at risk.According to a Medium post by community member Gas404, malicious JavaScript code was hidden in a governance proposal submitted two months ago by a so-called Tornado Cash developer on January 1. This code redirects deposit data to a public server hosted by the so-called developer, and currently, one deposit has been stolen.