TempleDAO Hacked Funds Deposited to Tornado Cash
The TempleDAO exploiter transferred stolen funds to the privacy protocol’s smart contract, according to Etherscan data

Source: DALL·E
key takeaways
- Hack amounted to 4% of TempleDAO’s assets
- Tornado Cash is a sanctioned entity in the US, meaning individuals there are prohibited from dealing with the mixer
A hacker who exploited DeFi protocol TempleDAO used sanctioned crypto mixer Tornado Cash to move their stolen funds.
Earlier this month, the yield-farming protocol was exploited for 1,831 ETH (around $2.34 million). All funds were moved to a new wallet.
Etherscan data shows about the same amount of ether was transferred from the hacker’s identified address to a Tornado Cash router on Sunday. The move will obfuscate the destination of the stolen funds. The protocol’s immutable smart contracts are capable of providing privacy for criminals as well as lawful users.
Blockchain investigator PeckShield first noted the exploiter’s use of the crypto mixer.
The transfers began with 0.1 ether, followed within minutes by multiple other transactions worth 100 ether each.
Tornado Cash acts as a cryptoasset mixer, making it extremely difficult to trace precisely the origin of funds withdrawn. It was added to the US Treasury’s sanctioned list of “Specially Designated Individuals” in August, prohibiting people in the country from dealing with the service.
The Treasury’s primary concern was the mixer’s role in laundering over $455 million worth of cryptoassets stolen by the North Korean hacking group Lazarus.
Before TempleDAO’s exploit, the protocol’s total value locked stood at about $57 million, according to DeFiLlama. The attack amounted to about 4% of its assets. Security firm BlockSec said the root cause behind it was insufficient access control to a specific function in the affiliated Stax Finance smart contract.
October marks the highest value of crypto hacked all year
October has so far turned out to be a record month for hacking activity, with stolen funds amounting to $718 million across 11 different DeFi protocols, according to Chainalysis.
The $100 million exploit of Binance’s BNB chain and the $112 million extracted from Mango Markets took place in the last two weeks — and the month is only half over.
Get the news in your inbox. Explore Blockworks newsletters:
- Blockworks Daily: The newsletter that helps thousands of investors understand crypto and the markets, by Byron Gilliam.
- Empire: Start your morning with the top news and analysis to inform your day in crypto.
- Forward Guidance: Reporting and analysis on the growing intersection of crypto and macroeconomics, policy and finance.
- 0xResearch: Alpha directly in your inbox. Market highlights, data, degen trade ideas, governance updates, token performance and more.
- Lightspeed: Built for Solana investors, developers and community members. The latest from one of crypto’s hottest networks.
- The Drop: For crypto collectors and traders, covering apps, games, memes and more.
- Supply Shock: Tracking Bitcoin’s rise from internet plaything worth less than a penny to global phenomenon disrupting money as we know it.