THORChain Offline Three Weeks After $10.7M Vault Exploit

Published by James Harris on June 5, 2026June 5, 2026

THORChain has been offline for three weeks after an attacker exploited a flaw in its GG20 threshold signature scheme, draining $10.7 million from a single vault and forcing a full network halt. The timing landed badly: the chain had been positioned to add Zcash support next, and a separate, unrelated vulnerability in Zcash’s own Orchard shielded pool collapsed that plan before it started.

The Zcash bug is the more structurally interesting story. Security researcher Taylor Hornby, working for Shielded Labs, used Anthropic’s Opus 4.8 model to construct a working exploit of a soundness flaw in the Orchard circuit, a flaw that had existed since the pool launched in May 2022. The four-year window before discovery is the problem that cannot be papered over: Zcash’s team has stated it is cryptographically impossible to determine whether the bug was ever used in production, because the privacy guarantees that make Zcash valuable also make forensic review impossible. An emergency soft fork disabled Orchard on June 2 and a corrected hard fork (NU6.2) restored it the following day, which is an impressively fast remediation, but the five-day turnaround does not resolve the four-year uncertainty. ZEC fell roughly 40% within 24 hours of disclosure, with Arthur Hayes publicly liquidating his entire position after previously targeting a price of 10% of Bitcoin’s value for the token.

The unverifiable exposure window is not a technical footnote. It is the reason the price damage persisted rather than recovering quickly after the fix.

What This Signals for Privacy Coins and Protocol Auditing

For THORChain, the recovery path is defined but not yet complete. The fix (version 3.19) adds a “key verify” step before vaults reopen, and ADR028 routes the $10.7 million loss through protocol reserves and synthetic asset holders rather than diluting RUNE supply, which is a structurally cleaner resolution than the token-printing approaches some protocols have used after exploits. The Zcash integration delay removes one near-term catalyst for RUNE, though Monero support was already queued behind it. More broadly, both incidents together highlight that AI-assisted auditing is now surfacing vulnerability classes that years of manual review missed, which raises an uncomfortable question about what else is sitting undetected in circuits and cryptographic schemes that predate these tools.

The hard fork timeline suggests Zcash’s core infrastructure is intact, and the NU6.2 deployment was technically clean. Whether institutional holders who exited on the disclosure return depends less on the fix itself and more on whether the four-year unverifiable window gets treated as a closed chapter or a permanent asterisk.