Ethan Carter
On Wednesday, Zcash (ZEC) initiated an emergency hard fork to resolve a significant bug within its Orchard shielded transaction pool. This vulnerability arose from a soundness issue in the zero-knowledge proof circuit, which is essential for validating private transactions. In theory, this flaw could have enabled the unauthorized creation of additional ZEC within the pool, potentially leading to undetected inflation or the acceptance of invalid state transitions by the network.
The Zcash Foundation reported on the same day that there is “no evidence of unauthorized value creation.” However, due to the inherent privacy design, it remains challenging for external observers to verify the absence of hidden inflation. The issue was first identified by independent researcher Taylor Hornby on May 29th during a protocol audit conducted for Shielded Labs, as noted by CoinDesk.
In a swift response, developers coordinated privately with miners and exchanges. An emergency soft fork, implemented in Zebra 4.5.3, temporarily disabled all operations on the affected shielded pool, known as Orchard. Subsequently, a hard fork was activated on Wednesday at block height 3,364,600, re-enabling shielded transactions with the necessary fix.
This incident marks the second occurrence of a bug in Zcash that posed a risk of creating new currency units in a manner that is difficult to verify. A previous flaw from 2018 theoretically permitted unlimited counterfeiting. In that case, the Zcash team kept the details closely guarded and implemented a fix within an upgrade, as reported by Fortune during the time the bug was disclosed.
The latest event has sparked intense discussions regarding the stability of Zcash’s monetary system and the governance process surrounding the response, which some critics perceive as overly centralized. Peter Todd, a blockchain researcher with a long history in the field and previously speculated to be Bitcoin creator Satoshi Nakamoto in an HBO documentary last year, stated on X that privacy at the consensus level presents unique threats. He emphasized, “Bitcoin has never had an inflation exploit that could destroy the value of the currency.” He added that the privacy features of Zcash make inflation exploits significantly more perilous. Todd pointed out that approximately 30% of ZEC supply is held in the shielded pool, meaning any undetected inflation or forced freeze of those assets could severely impact holders, including himself. Previously involved in Zcash’s initial trusted setup ceremony, he used this incident to challenge the rationale behind integrating similar privacy features directly into Bitcoin’s core layer.
Seth for Privacy, the COO of the privacy-centric crypto wallet Cake Wallet, criticized the coordination efforts as excessively centralized. In a post on X, he accused ZODL, a venture capital-backed for-profit entity, of having “secretly coordinated an entire soft and hard fork of a network” while marketing the outcome. He expressed frustration that his team only learned about the bug through a public post on X, had unanswered questions for days, and received crucial information just hours before the hard fork went live. Wallets and other participants in the ecosystem were forced to make last-minute updates or face broken functionalities, which he deemed unacceptable for decentralized networks. He labeled the handling of the situation as an “abuse of the insider access that ZODL has.”
In response, ZODL founder Josh Swihart defended the process, stating, “It doesn’t sound like you know how responsible disclosure works. I don’t have time to explain it to you.”
Concerns about centralization in the cryptocurrency sector extend beyond just Zcash. Critics have long pointed to stablecoins that have single issuers and platforms like Coinbase’s Base, which appear designed to benefit traditional financial institutions instead of upholding the decentralized, cypherpunk ideals associated with Bitcoin’s original vision. Recently, a stablecoin issuer fell victim to a hack that exploited a singular vulnerability within its on-chain smart contract design. In April, entities linked to the Iranian regime had $344 million worth of their USDT (the stablecoin issued by Tether) holdings frozen. Circle, the issuer of USDC, raised $222 million specifically to develop its own blockchain infrastructure, which could lead their stablecoin operations to resemble conventional financial systems more closely.
Zcash has demonstrated strong performance in the cryptocurrency market in recent years, with its value surging by over 900% at times within the past twelve months, driven by renewed interest in privacy features. much of this price movement seems to stem from traders capitalizing on narratives rather than from tangible growth in the real-world adoption of Zcash among those prioritizing privacy. In scenarios where privacy is paramount, such as ransomware transactions and darknet market activity, Monero continues to be the preferred choice. Analyses of new darknet marketplaces launched in 2024 revealed that almost half exclusively accepted Monero, while Zcash was far less frequently utilized.
Notably, Edward Snowden, the NSA whistleblower who also participated in Zcash’s initial trusted setup ceremony, has publicly supported Zcash for years, calling it the most intriguing alternative to Bitcoin in a 2017 CoinDesk interview. Conversely, Alex Gladstein, Chief Strategy Officer at the Human Rights Foundation, has maintained that Bitcoin remains the essential tool for financial independence and resistance to surveillance or censorship, highlighting its established role as a store of value and the advancements in privacy through secondary protocol layers.
While Zcash has reestablished a functional shielded pool, this incident raises ongoing concerns regarding the ability to rule out future inflation and the concentration of decision-making power among a limited group of entities. This centralization issue is a common challenge across nearly all cryptocurrency projects striving for growth beyond their initial niche audiences.
Daniel Mercer
Brandon Fletcher
