Tornado Cash

Tornado Cash receives a C+ risk grade (41/100) from Hindenrank, where lower scores indicate lower risk. Moderate risk — proven privacy technology with the largest anonymity set in DeFi, offset by governance vulnerabilities, regulatory uncertainty, and supply chain security concerns. Tornado Cash is the largest privacy protocol in DeFi, using zero-knowledge proofs to break the on-chain link between deposit and withdrawal addresses. With approximately $498M in locked deposits across Ethereum, it has operated since 2019 but faced significant challenges including OFAC sanctions (2022-2025) and a governance takeover attack in May 2023. Its B- grade reflects a clean core mixing mechanism offset by governance vulnerabilities and regulatory risk.

The key risks identified for Tornado Cash are: (1) The protocol's governance was hijacked in May 2023 through a malicious proposal that used hidden code to grant an attacker control. While control was returned, this demonstrated a fundamental vulnerability in the DAO proposal review process that may not be fully resolved. (2) Tornado Cash was subject to US OFAC sanctions from August 2022 to March 2025, causing significant TVL outflows. While sanctions were lifted, privacy protocols remain under heightened regulatory scrutiny globally, which could trigger future usage restrictions. (3) The privacy guarantees of the protocol depend on the size of the anonymity set — the number of deposits and withdrawals in each pool. During periods of low usage, it becomes statistically easier for sophisticated adversaries to link deposits to withdrawals. (4) A supply chain attack introduced backdoor code into the Tornado Cash npm package, highlighting risks in the protocol's post-sanctions open-source maintenance model.

Tornado Cash scores 41/100 across eight risk dimensions: Mechanism Novelty: 3/15, Interaction Severity: 9/20, Oracle Surface: 0/10, Documentation Gaps: 2/10, Track Record: 10/15, Scale Exposure: 7/10, Regulatory Risk: 7/10, Vitality Risk: 3/10. The highest risk area is Scale Exposure at 7/10.

Among 68 rated DeFi protocols on Hindenrank, Tornado Cash ranks #54 by safety (lowest risk score = safest). Its 41/100 risk score and C+ grade place it among the riskier DeFi protocols.

Tornado Cash scores 10/15 on the Track Record risk dimension, indicating some history of security incidents or exploits. Higher scores reflect more severe or frequent incidents. Review the full risk report for details.