Zcash (ZEC) lost more than half its value in a single day, dropping to $250 after news broke that a critical vulnerability in its privacy-focused Orchard circuit could have let attackers mint fake tokens. The bug was discovered by security researcher Taylor Hornby, who used an AI auditing framework powered by Claude Opus 4.8 to find the flaw. Developers from the Zcash Open Development Lab and other ecosystem partners rushed out an emergency patch.
The Bug and the Discovery
The vulnerability lived inside the Orchard zero-knowledge proof circuit, a core piece of Zcash's shielded transaction technology. If exploited, it would have allowed an attacker to create counterfeit ZEC without detection—essentially printing money inside the Orchard pool. Hornby found the issue using a purpose-built AI auditing tool, a method that marks one of the first public uses of such an approach to catch a critical cryptographic bug. How long the flaw had been lurking remains unknown, and developers still cannot say whether any fake coins were actually created before the patch.
Price Crash and Recovery
Once the bug became public, ZEC tumbled more than 50% to $250, according to CoinMarketCap data. But the coordinated fix—deployed by the Zcash Open Development Lab (ZODL) alongside other ecosystem teams—restored confidence quickly. After the patch, ZEC rebounded more than 70% to $433. The erratic price swing reflects how heavily the market reacts to security news in a protocol built on trust in its cryptographic guarantees.
What Comes Next: The Ironwood Proposal
Shielded Labs, a non-profit that supports Zcash, is working with The Zcash Foundation, Tachyon Group, Valar Group, and ZODL on a proposal called Ironwood. The plan aims to restore something the vulnerability temporarily broke: a user's ability to independently verify Zcash's circulating supply without relying on assumptions or waiting for funds to migrate out of the Orchard pool. Once Ironwood is activated, anyone running a node could confirm that the circulating supply hasn't been tampered with. The proposal also blocks any transaction that tries to mint new coins in the Orchard pool.
Will We Know If Exploitation Happened?
Ironwood could double as a forensics tool. If no extra ZEC tries to leave the Orchard pool after activation, that would suggest the flaw was never exploited. But if counterfeit coins attempt to exit, the proposal would block and destroy them—revealing that counterfeiting did occur. Until Ironwood goes live and the network processes those transactions, that question remains open. No timeline for activation has been announced yet.
