Moderate risk — proven privacy technology with the largest anonymity set in DeFi, offset by governance vulnerabilities, regulatory uncertainty, and supply chain security concerns.
Top Risks
1
Governance was compromised in May 2023 when an attacker used a malicious proposal with hidden SELFDESTRUCT/CREATE2 logic to grant themselves 1.2M votes, exceeding the legitimate 700K votes. The attacker later returned control, but the attack vector demonstrated that DAO proposal auditing is insufficient to prevent governance takeover.
2
OFAC sanctions from August 2022 to March 2025 severely restricted Tornado Cash usage by US persons and entities. While sanctions were lifted, regulatory risk remains elevated as privacy protocols face ongoing scrutiny from global financial regulators.
3
The protocol's anonymity set degrades at low usage periods — fewer deposits and withdrawals in a given pool denomination make it easier to correlate transactions. TVL volatility driven by regulatory uncertainty directly impacts privacy guarantees.
4
A supply chain attack implanted backdoor code in the Tornado Cash npm package, marking the second major security breach after the governance hack. This highlights risks in the protocol's open-source maintenance model post-sanctions.
Risk Breakdown
Frequently Asked Questions
Is Tornado Cash safe to use?
Tornado Cash receives a C+ risk grade (39/100) from Hindenrank, where lower scores indicate lower risk. Moderate risk — proven privacy technology with the largest anonymity set in DeFi, offset by governance vulnerabilities, regulatory uncertainty, and supply chain security concerns. Tornado Cash is the largest privacy protocol in DeFi, using zero-knowledge proofs to break the on-chain link between deposit and withdrawal addresses. With approximately $498M in locked deposits across Ethereum, it has operated since 2019 but faced significant challenges including OFAC sanctions (2022-2025) and a governance takeover attack in May 2023. Its B- grade reflects a clean core mixing mechanism offset by governance vulnerabilities and regulatory risk.
What are the main risks of using Tornado Cash?
The key risks identified for Tornado Cash are: (1) The protocol's governance was hijacked in May 2023 through a malicious proposal that used hidden code to grant an attacker control. While control was returned, this demonstrated a fundamental vulnerability in the DAO proposal review process that may not be fully resolved. (2) Tornado Cash was subject to US OFAC sanctions from August 2022 to March 2025, causing significant TVL outflows. While sanctions were lifted, privacy protocols remain under heightened regulatory scrutiny globally, which could trigger future usage restrictions. (3) The privacy guarantees of the protocol depend on the size of the anonymity set — the number of deposits and withdrawals in each pool. During periods of low usage, it becomes statistically easier for sophisticated adversaries to link deposits to withdrawals. (4) A supply chain attack introduced backdoor code into the Tornado Cash npm package, highlighting risks in the protocol's post-sanctions open-source maintenance model.
What is Tornado Cash's risk score breakdown?
Tornado Cash scores 39/100 across eight risk dimensions: Mechanism Novelty: 3/15, Interaction Severity: 9/20, Oracle Surface: 0/10, Documentation Gaps: 2/10, Track Record: 10/15, Scale Exposure: 5/10, Regulatory Risk: 7/10, Vitality Risk: 3/10. The highest risk area is Regulatory Risk at 7/10.
How does Tornado Cash compare to other DeFi protocols?
Among 68 rated DeFi protocols on Hindenrank, Tornado Cash ranks #45 by safety (lowest risk score = safest). Its 39/100 risk score and C+ grade place it in the middle tier of DeFi protocols.
Has Tornado Cash ever been hacked or exploited?
Tornado Cash scores 10/15 on the Track Record risk dimension, indicating some history of security incidents or exploits. Higher scores reflect more severe or frequent incidents. Review the full risk report for details.