Friday, May 23, 2025
Homecyber securityTornado Cash Developer Jailed for Laundering Billions of Dollars

Tornado Cash Developer Jailed for Laundering Billions of Dollars

Published on

SIEM as a Service

Follow Us on Google News

A court has sentenced the developer of the cryptocurrency mixing service Tornado Cash to over five years in prison.

The developer was found guilty of designing and operating a platform that laundered billions of dollars, including proceeds from high-profile cybercrimes.

The Mechanism of Tornado Cash

Tornado Cash, developed by the defendant and two others, functioned by using ‘pools’—digital spaces where cryptocurrency from various sources was mixed, obscuring the origins and destinations of the funds.

- Advertisement - Google News

This process effectively erased the transaction trail on the blockchain, providing anonymity to the users involved.

The service facilitated the laundering of approximately $2.2 billion in Ether, derived from 36 different thefts. The actual figure could be higher.

Free Webinar on Live API Attack Simulation: Book Your Seat | Start protecting your APIs from hackers

The defendant argued that Tornado Cash was intended as a legitimate privacy tool for cryptocurrency users, claiming that preventing misuse due to the platform’s technical nature was out of his control.

However, the court determined that the service was inherently designed to conceal and disguise the origins of criminal funds, thus constituting direct involvement in money laundering activities.

The court emphasized that the operation and effects of Tornado Cash were the direct responsibility of its developers, who had the capability but chose not to implement measures against its misuse.

Evidence of Misuse and Awareness

Investigations revealed that the developer was not only aware of the illicit use of Tornado Cash but actively enhanced its features to increase user anonymity and the service’s concealing capabilities.

Discussions in various chat groups indicated that the developer was informed about the criminal origins of the funds being laundered through the service.

Despite this knowledge, no efforts were made to restrict the service’s use or cooperate with authorities.

The case highlighted the significant role Tornado Cash played in facilitating financial crimes and terrorism.

Notably, the service was used to launder almost $450 million stolen by the Lazarus Group in the infamous ‘Axie Infinity hack’.

This incident alone underscores the severe implications of such platforms when used by criminal entities.

The court’s decision to imprison the developer for five years and four months reflects the severity of the offenses and the substantial financial damages involved.

Additionally, assets worth approximately 1.9 million euros, including a Porsche and cryptocurrencies, were seized and will not be returned to the defendant.

This case serves as a stern warning to cryptocurrency developers and operators about the legal and ethical responsibilities associated with creating financial platforms.

The ruling underscores the necessity for implementing safeguards to prevent the misuse of such technologies, emphasizing that the pursuit of innovation must not override compliance with laws designed to prevent financial crimes.

On-Demand Webinar to Secure the Top 3 SME Attack Vectors: Watch for Free

Divya
Divya
Divya is a Senior Journalist at GBhackers covering Cyber Attacks, Threats, Breaches, Vulnerabilities and other happenings in the cyber world.

Latest articles

CefSharp Enumeration Tool Identifies Critical Security Issues in .NET Desktop Applications

Cybersecurity researchers and red teamers, a newly released tool named CefEnum is shedding light...

Russian Hackers Exploit Oracle Cloud Infrastructure to Target Scaleway Object Storage

Russian threat actors have been leveraging trusted cloud infrastructure platforms like Oracle Cloud Infrastructure...

Critical Vulnerability in Netwrix Password Manager Enables Authenticated Remote Code Execution

A critical security vulnerability has been discovered in Netwrix Password Secure, a widely used...

Cityworks Zero-Day Vulnerability Used by UAT-638 Hackers to Infect IIS Servers with Shell Malware

Cisco Talos has uncovered active exploitation of a zero-day remote-code-execution vulnerability, identified as CVE-2025-0994,...

Resilience at Scale

Why Application Security is Non-Negotiable

The resilience of your digital infrastructure directly impacts your ability to scale. And yet, application security remains a critical weak link for most organizations.

Application Security is no longer just a defensive play—it’s the cornerstone of cyber resilience and sustainable growth. In this webinar, Karthik Krishnamoorthy (CTO of Indusface) and Phani Deepak Akella (VP of Marketing – Indusface), will share how AI-powered application security can help organizations build resilience by

Discussion points


Protecting at internet scale using AI and behavioral-based DDoS & bot mitigation.
Autonomously discovering external assets and remediating vulnerabilities within 72 hours, enabling secure, confident scaling.
Ensuring 100% application availability through platforms architected for failure resilience.
Eliminating silos with real-time correlation between attack surface and active threats for rapid, accurate mitigation

More like this

CefSharp Enumeration Tool Identifies Critical Security Issues in .NET Desktop Applications

Cybersecurity researchers and red teamers, a newly released tool named CefEnum is shedding light...

Russian Hackers Exploit Oracle Cloud Infrastructure to Target Scaleway Object Storage

Russian threat actors have been leveraging trusted cloud infrastructure platforms like Oracle Cloud Infrastructure...

Critical Vulnerability in Netwrix Password Manager Enables Authenticated Remote Code Execution

A critical security vulnerability has been discovered in Netwrix Password Secure, a widely used...