I, Degen - E10: Tornado Cash Sanctioned, Saber Protocol Unmasked - 8/11/2022

# I, Degen - E10: Tornado Cash Sanctioned, Saber Protocol Unmasked - 8/11/2022 ::: info Listen at: idegen.fm ::: :::success Contact us: [@idegenfm](https://twitter.com/idegenfm) ::: #### Intro Welcome to I, Degen - We track down and explore the most exciting crypto hacks, mysteries, exploits, and anything that feeds our crypto curiosity each week. We dig in, cutting through the misinformation and hype in search of a signal in the noise. #### Episode Summary This week we dive into the unprecedented Tornado Cash sanctions, including the arrest of a suspected developer. We also spend some time on the fascinating story of two brothers that operated at least 11 anon personas to fake a thriving DeFi ecosystem on Solana with the popular Saber protocol. ![](https://hackmd.io/_uploads/SkRk3x4Ac.jpg) #### Weekly Thought **What's your crypto narrative, and how is it defined/created?** # I,Degen - Weekly 1. Nomad Bridge Hack Update * Nomad announces bounty: ![](https://hackmd.io/_uploads/H1Cq-qz09.png) * [CoinTelegraph reports that 88% of the exploiters were copycats](https://cointelegraph.com/news/88-of-nomad-bridge-exploiters-were-copycats-report) * [Excellent technical breakdown by Coinbase Threat Intel](https://blog.coinbase.com/nomad-bridge-incident-analysis-899b425b0f34) 2. [Report of a consensus level attack on Ethereum](https://twitter.com/yaish_aviv/status/1555445499041300481) 3. [Curve.fi DNS](https://twitter.com/CurveFinance/status/1557107088962224132) hijack results in theft of 570K - [some stolen funds frozen on the move though FixedFloat](https://twitter.com/FixedFloat/status/1557116267378708481) 4. Ethereum POS merge scheduled for September 15-16 ![](https://hackmd.io/_uploads/BkBIh1E0q.png) 5. [Master of Anons: How a Crypto Developer Faked a DeFi Ecosystem](https://www.coindesk.com/layer2/2022/08/04/master-of-anons-how-a-crypto-developer-faked-a-defi-ecosystem/) from Coindesk > The Macalinao brothers used a web of bogus identities to create the illusion of a dev community, juicing value on the Saber protocol and Solana blockchain. Now they're moving to Aptos. * Ian Macalinao says that Saber and Sunny comprised $7.5 billion of the total Solana TVL of $10.5 billion at their peak. He believes this contributed to SOL's meteoric rise when the token reached a record high of $188. * 11 devs all the same person * protocols built on Saber, used to artificially inflate TVL * **[Crypto data website DeFiLlama has changed the way it presents key decentralized finance (DeFi) metric](https://www.coindesk.com/business/2022/08/05/data-provider-defillama-de-emphasizes-double-counted-crypto-deposits-after-saber-revelation/) metric in response to this news** * ![](https://hackmd.io/_uploads/SkqWfkV09.png) # I, Degen - Deep Dive Tornado Cash Sanctioned **What:** [U.S. Treasury Sanctions Notorious Virtual Currency Mixer Tornado Cash](https://home.treasury.gov/news/press-releases/jy0916) **What is TC, and how does it work?** Tornado Cash is a decentralized application launched on the Ethereum blockchain in 2019 that allows someone to un-link the source and destination of coins. That is to say, provide privacy or 'mix' coins. > When you deposit your 1 ETH on the contract, you have to provide a "commitment". This commitment is stored by the smart contract. When you withdraw 1 ETH on the other side, you have to provide a "nullifier" and a zero-knowledge proof. The nullifier is a unique ID that is in connection with the commitment and the ZKP proves the connection, but nobody knows which nullifier is assigned to which commitment (except the owner of the depositor/withdrawal account). - [Understanding Zero-Knowledge Proofs Through the Source Code of Tornado Cash](https://betterprogramming.pub/understanding-zero-knowledge-proofs-through-the-source-code-of-tornado-cash-41d335c5475f) Why sanctions? > Tornado Cash, which has been used to launder more than $7 billion worth of virtual currency since its creation in 2019. - [Treasury.gov](https://home.treasury.gov/news/press-releases/jy0916) We should point out that statement is not factually accurate, as not all coins moving through TC were being laundered. > "Despite public assurances otherwise, Tornado Cash has repeatedly failed to impose effective controls designed to stop it from laundering funds for malicious cyber actors on a regular basis and without basic measures to address its risks. Treasury will continue to aggressively pursue actions against mixers that launder virtual currency for criminals and those who assist them." \- Brian E. Nelson - Secretary of the Treasury for Terrorism and Financial Intelligence Let's look at a breakdown of funds received by TC from Chainanalysis: ![](https://hackmd.io/_uploads/r1EHXxECc.png) \- https://blog.chainalysis.com/reports/tornado-cash-ofac-designation-sanctions/ ### Points of interest * 38 Addresses sanctioned * TC dev arrested in the Netherlands on 8/10. > "suspected of involvement in concealing criminal financial flows and facilitating money laundering," and that "multiple arrests are not ruled out" as investigations into Tornado Cash continue. [The Verge](https://www.theverge.com/2022/8/12/23298217/tornado-cash-crypto-mixer-crackdown-authorities-arrest-suspected-developer-amsterdam) * first smart contract sanctioned * Famous accounts dusted by TC coin [](https://news.bitcoin.com/snoop-dogg-steve-aoki-logan-paul-and-beeple-dusted-by-ofac-banned-tornado-cash-transactions/) * ![](https://hackmd.io/_uploads/B1D48eVAc.png) * [TC Withdrawals increase (but how does increase in WDs == increate in usage?)](https://twitter.com/mhonkasalo/status/1557084515486633986?s=21&t=i6qC2wAhnVSdH9m3eGJpFw) - Maybe an attempt to get coins out before the platform updates blacklists? * as with most things crypto, there are lots of uninformed opinions on this one * TORN (DAO token for TC) down from ~$30 to ~$14 * ![](https://hackmd.io/_uploads/r1x4Pe40q.png) ### The Resistance ![](https://hackmd.io/_uploads/HkuFElNCq.png) \-https://twitter.com/jchervinsky/status/1557804087856570368 ![](https://hackmd.io/_uploads/rJTadlNC9.png) [The tornado cash opportunity. How we can learn from this attack to prevent it from happening again](https://www.reddit.com/r/ethereum/comments/wl98rl/the_tornado_cash_opportunity_how_we_can_learn/) # I, Degen - Most creative personal hack attempt of the week? ## References/Links * Curve.fi DNS hack https://twitter.com/FixedFloat/status/1557116267378708481 TC Feature * https://decrypt.co/107075/ethereum-cofounder-used-blacklisted-tornado-cash-donate-ukraine * https://twitter.com/decryptmedia/status/1557042485091831817?s=21&t=SMK4-GTe2D8y0_zA8p67NA * https://blog.chainalysis.com/reports/tornado-cash-ofac-designation-sanctions/ * https://twitter.com/semenov_roman_ * https://www.youtube.com/watch?v=_eEZisd75-4 * https://youtu.be/_eEZisd75-4?t=501 Sabre Protocol House of Cards * https://www.business2community.com/crypto-news/ian-macalinao-inflates-solana-tvl-by-creating-11-fake-developer-personas-02532693 * https://www.coindesk.com/business/2022/08/05/data-provider-defillama-de-emphasizes-double-counted-crypto-deposits-after-saber-revelation/ :::warning We do our best to report accurately on the topics we discuss but we won't always get everything correctly. Please comment here or reach out to us @idegenfm with corrections or comments! :::

Read more

I, Degen - E17: OPSEC at DEVCON 6 - 10/06/2022

I, Degen - E16: Reversible transactions - 10/1/2022

I, Degen - E16 - Research Notes - Reversible ERC20 & ERC721s

I, Degen - E15: Wintermute's 119 Million Dollar Key Generation Lesson - 9/20/2022