{"id":24104,"date":"2026-06-06T15:19:32","date_gmt":"2026-06-06T15:19:32","guid":{"rendered":"https:\/\/nft.runfyers.com\/index.php\/2026\/06\/06\/zcash-plunges-after-four-year-bug-could-have-allowed-unlimited-token-minting-nft-plazas-zcash-plunges-after-four-year-bug-could-have-allowed-unlimited-token-minting\/"},"modified":"2026-06-06T15:19:32","modified_gmt":"2026-06-06T15:19:32","slug":"zcash-plunges-after-four-year-bug-could-have-allowed-unlimited-token-minting-nft-plazas-zcash-plunges-after-four-year-bug-could-have-allowed-unlimited-token-minting","status":"publish","type":"post","link":"https:\/\/nft.runfyers.com\/index.php\/2026\/06\/06\/zcash-plunges-after-four-year-bug-could-have-allowed-unlimited-token-minting-nft-plazas-zcash-plunges-after-four-year-bug-could-have-allowed-unlimited-token-minting\/","title":{"rendered":"Zcash Plunges After Four-Year Bug Could Have Allowed Unlimited Token Minting &#8211; NFT Plazas Zcash Plunges After Four-Year Bug Could Have Allowed Unlimited Token Minting"},"content":{"rendered":"<p><\/p>\n<div>\n<p><b>Zcash<\/b><span style=\"font-weight: 400;\"> (the token is known as ZEC) is facing a massive wave of skepticism after the development community published details about a critical vulnerability in <\/span><b>Orchard<\/b><span style=\"font-weight: 400;\">, the network\u2019s latest shielded pool. ZEC <\/span><b>plunged over 50%<\/b><span style=\"font-weight: 400;\"> at one point following this information, before recovering to $367.35 on June 6.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">The vulnerability was discovered on May 29 by security researcher <\/span><b>Taylor Hornby<\/b><span style=\"font-weight: 400;\"> and was fixed through an emergency upgrade a few days later. Zcash Open Development Lab (ZODL) stated that there is no evidence that the bug was ever exploited or that unauthorized ZEC was created. However, this bug could allow counterfeit ZEC to be created within Orchard, while the private design of this pool makes it difficult to definitively prove that it was never exploited.<\/span><\/p>\n<h2><span class=\"ez-toc-section\" id=\"What_Happened\"\/><b>What Happened<\/b><span style=\"font-weight: 400;\">\u00a0<\/span><span class=\"ez-toc-section-end\"\/><\/h2>\n<p><span style=\"font-weight: 400;\">The vulnerability was discovered on May 29 in Orchard, where transactions are verified using zero-knowledge proofs to maintain user privacy. According to the <\/span><a href=\"https:\/\/zfnd.org\/zebra-4-5-3-and-5-0-0-emergency-soft-fork-and-nu6-2-activation\/\" data-wpel-link=\"external\" target=\"_blank\" rel=\"nofollow external noopener noreferrer\"><span style=\"font-weight: 400;\">Zcash Open Development Lab<\/span><\/a><span style=\"font-weight: 400;\">, security researcher Taylor Hornby discovered the bug during an audit commissioned by Shielded Labs and reported it to the ZODL engineering team shortly thereafter.<\/span><a href=\"https:\/\/zfnd.org\/zebra-4-5-3-and-5-0-0-emergency-soft-fork-and-nu6-2-activation\/\" data-wpel-link=\"external\" target=\"_blank\" rel=\"nofollow external noopener noreferrer\"><span style=\"font-weight: 400;\">\u00a0<\/span><\/a><\/p>\n<p><span style=\"font-weight: 400;\">The issue lies within Orchard\u2019s transaction verification mechanism. If exploited, this vulnerability could cause the system to accept invalid transactions within Orchard. ZODL confirmed the report within hours and began preparing a mitigation plan with network operators.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Due to the bug involving consensus rules, Zcash had to handle it via a network upgrade rather than a standard wallet or node update. ZODL first paused Orchard-related activities through a soft fork to limit risks, then deployed a hard fork to update the fixed circuit and restore Orchard.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">Main Timeline:\u00a0<\/span><\/p>\n<ul>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">May 29: Taylor Hornby discovers and reports the Orchard vulnerability to ZODL.\u00a0<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">May 30-31: ZODL confirms the bug, prepares the patch, and begins private coordination with miners, exchanges, and infrastructure operators.\u00a0<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">June 1-2: Zcash activates the soft fork, pausing the creation of new outputs and the spending of existing balances within Orchard.\u00a0<\/span><\/li>\n<li style=\"font-weight: 400;\" aria-level=\"1\"><span style=\"font-weight: 400;\">June 3: The hard fork is completed, and Orchard is reactivated with the fixed circuit.<\/span><\/li>\n<\/ul>\n<h2><span class=\"ez-toc-section\" id=\"Why_the_Bug_Mattered\"\/><b>Why the Bug Mattered<\/b><span style=\"font-weight: 400;\">\u00a0<\/span><span class=\"ez-toc-section-end\"\/><\/h2>\n<p><span style=\"font-weight: 400;\">The critical point of the Orchard bug lies in <\/span><b>soundness<\/b><span style=\"font-weight: 400;\">\u2014the ability to guarantee that the system only accepts valid proofs and states. When this guarantee is broken, a proof can be accepted even if the state behind it does not comply with the protocol\u2019s rules.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">According to an article by Zooko Wilcox, Jason McGee, and Taylor Hornby, Hornby successfully created a full exploit in a local test environment. In that environment, the exploit could create counterfeit ZEC within Orchard without being detected.\u00a0<\/span><\/p>\n<blockquote class=\"twitter-tweet\" data-width=\"500\" data-dnt=\"true\">\n<p lang=\"zxx\" dir=\"ltr\"><a href=\"https:\/\/t.co\/v7BiOdzU9E\" data-wpel-link=\"external\" target=\"_blank\" rel=\"nofollow external noopener noreferrer\">https:\/\/t.co\/v7BiOdzU9E<\/a><\/p>\n<p>\u2014 zooko\ud83d\udee1\ud83e\udd93\ud83e\udd93\ud83e\udd93 \u24e9 (@zooko) <a href=\"https:\/\/x.com\/zooko\/status\/2062644925590900980?ref_src=twsrc%5Etfw\" data-wpel-link=\"external\" target=\"_blank\" rel=\"nofollow external noopener noreferrer\">June 4, 2026<\/a><\/p>\n<\/blockquote>\n<p><span style=\"font-weight: 400;\">If a similar bug were exploited on the mainnet, the consequence would not just be a single incorrect transaction being accepted. It could distort the accounting of the shielded pool and directly raise questions about the integrity of the ZEC supply.<\/span><\/p>\n<h2><span class=\"ez-toc-section\" id=\"What_Remains_Unclear\"\/><b>What Remains Unclear<\/b><span style=\"font-weight: 400;\">\u00a0<\/span><span class=\"ez-toc-section-end\"\/><\/h2>\n<p><span style=\"font-weight: 400;\">ZODL stated that there is <\/span><b>no evidence<\/b><span style=\"font-weight: 400;\"> that the vulnerability was ever exploited, no unauthorized creation of ZEC has been detected, and no impact on the privacy of assets in Zcash\u2019s pools has been recorded. The group also said the total supply of ZEC remained safe following checks during the incident response.<\/span><\/p>\n<p><span style=\"font-weight: 400;\">What remains unclear is whether the vulnerability had been exploited before being patched. Shielded Labs stated that due to the private nature of this pool, it is impossible to rely solely on existing cryptographic evidence to absolutely confirm that the vulnerability was never exploited before being patched. Even so, the group assesses the likelihood of prior exploitation as low, given that the bug is difficult to detect and the ecosystem\u2019s response was rapid after receiving the report.<\/span><\/p>\n<h2><span class=\"ez-toc-section\" id=\"Market_Reaction\"\/><b>Market Reaction<\/b><span style=\"font-weight: 400;\">\u00a0<\/span><span class=\"ez-toc-section-end\"\/><\/h2>\n<p><span style=\"font-weight: 400;\">ZEC at one point fell over 50% from the $600 range to below $260 after information about the Orchard vulnerability spread. According to CoinGecko data, the token is currently trading around $367.35, down 10.8% in 24 hours, with trading volume over the same period reaching $3.35 billion.<\/span><\/p>\n<div id=\"attachment_97730\" style=\"width: 2212px\" class=\"wp-caption alignnone\"><noscript><\/noscript><img loading=\"lazy\" decoding=\"async\" aria-describedby=\"caption-attachment-97730\" class=\"lazyload size-full wp-image-97730\" src=\"https:\/\/nftplazas.com\/wp-content\/uploads\/2026\/06\/Screenshot-2026-06-06-at-13.29.41.jpg\" alt=\"ZEC price chart (1D)\" width=\"2202\" height=\"1392\"\/><\/p>\n<p id=\"caption-attachment-97730\" class=\"wp-caption-text\">ZEC price chart (1D). Source: TradingView<\/p>\n<\/div>\n<p><span style=\"font-weight: 400;\">In the context of Zcash having a maximum supply of 21 million ZEC, information about a bug that could create counterfeit ZEC in a shielded pool quickly shifted the narrative from a technical issue to a question of trust in the supply.<\/span><\/p>\n<h2><span class=\"ez-toc-section\" id=\"How_Zcash_Responded\"\/><b>How Zcash Responded<\/b><span style=\"font-weight: 400;\">\u00a0<\/span><span class=\"ez-toc-section-end\"\/><\/h2>\n<p><span style=\"font-weight: 400;\">ZODL stated that the remediation process required network-level coordination because the bug was consensus-related. Miners, exchanges, node operators, wallets, infrastructure, and other independent parties had to collectively deploy updated software for the upgrade to activate successfully.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">The response was deployed with a risk-mitigation-first approach, followed by a complete resolution: Orchard was temporarily paused while the network prepared for the upgrade, then restored when the fixed circuit was activated. ZODL stated that relevant node software and wallet SDKs were also updated following the upgrade.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">According to ZODL, this is the second security-driven protocol upgrade in Zcash\u2019s history since the network launched in 2016. ZODL stated that relevant node software and wallet SDKs were updated following the upgrade.<\/span><\/p>\n<h2><span class=\"ez-toc-section\" id=\"What_Comes_Next\"\/><b>What Comes Next\u00a0<\/b><span class=\"ez-toc-section-end\"\/><\/h2>\n<p><span style=\"font-weight: 400;\">Shielded Labs stated they are working on a new network upgrade proposal so that users can verify the integrity of the Zcash supply more directly. The idea being discussed is to deploy a new shielded pool and apply turnstile accounting to assets leaving Orchard, thereby checking whether the old pool contains invalid values.\u00a0<\/span><\/p>\n<p><span style=\"font-weight: 400;\">This proposal still needs to go through Zcash\u2019s standard governance process before it can be activated. Shielded Labs also stated they are preparing to publish more details about this option and begin a formal verification project for the Orchard circuit. For now, the vulnerability has been patched, and Orchard is back online. The next focus is whether Zcash can present a convincing enough mechanism to address the uncertainty regarding the supply in the period before the patch was deployed.<\/span><\/p>\n<\/div>\n<p><a href=\"https:\/\/nftplazas.com\/zcash-plunges-four-year-bug-unlimited-token-minting\/\" target=\"_blank\" rel=\"noopener\">Source link <\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Zcash (the token is known as ZEC) is facing a massive wave of skepticism after the development community published details about a critical vulnerability in Orchard, the network\u2019s latest shielded pool. ZEC plunged over 50% at one point following this information, before recovering to $367.35 on June 6. The vulnerability was discovered on May 29 [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":24105,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"jetpack_publicize_message":"","jetpack_is_tweetstorm":false,"jetpack_publicize_feature_enabled":true},"categories":[16],"tags":[],"jetpack_publicize_connections":[],"jetpack_featured_media_url":"https:\/\/nftplazas.com\/wp-content\/uploads\/2026\/06\/0606-1.jpg","jetpack_sharing_enabled":true,"jetpack_likes_enabled":true,"_links":{"self":[{"href":"https:\/\/nft.runfyers.com\/index.php\/wp-json\/wp\/v2\/posts\/24104"}],"collection":[{"href":"https:\/\/nft.runfyers.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/nft.runfyers.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/nft.runfyers.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/nft.runfyers.com\/index.php\/wp-json\/wp\/v2\/comments?post=24104"}],"version-history":[{"count":0,"href":"https:\/\/nft.runfyers.com\/index.php\/wp-json\/wp\/v2\/posts\/24104\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/nft.runfyers.com\/index.php\/wp-json\/wp\/v2\/media\/24105"}],"wp:attachment":[{"href":"https:\/\/nft.runfyers.com\/index.php\/wp-json\/wp\/v2\/media?parent=24104"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/nft.runfyers.com\/index.php\/wp-json\/wp\/v2\/categories?post=24104"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/nft.runfyers.com\/index.php\/wp-json\/wp\/v2\/tags?post=24104"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}