Token Of Power Governance Exploit Drains $1.58 Million In WETH, TRM Says

bitcoinistPublished on 2026-06-14Last updated on 2026-06-14

Abstract

Blockchain intelligence firm TRM Labs reports a governance exploit against the Token of Power protocol, resulting in a loss of approximately $1.58 million in WETH. The attacker exploited a missing timelock in the protocol's Aragon DAO setup, allowing them to propose, vote on, and execute a malicious action within a single block. The attacker funded the operation with 662 ETH from Tornado Cash, purchased enough TOP tokens to gain majority voting power, minted 10 billion new TOP tokens, and swapped them for WETH via a Balancer pool before moving funds back through Tornado Cash. The incident underscores that governance design is a critical security risk in DeFi, where parameters like timelocks provide essential reaction time. It also highlights how mixers and liquidity pools can be utilized in exploits without being directly compromised. Observers are now watching for any movement of the stolen funds and further remediation details from involved parties. This event is part of a broader shift in crypto, emphasizing the importance of underlying infrastructure, security, and governance alongside market movements.

Blockchain intelligence firm TRM Labs has detailed a governance takeover exploit against the Token of Power protocol that drained approximately $1.58 million in WETH.

According to TRM’s analysis, the attacker exploited a weakness in the protocol’s Aragon DAO setup: the absence of a timelock. That allowed the attacker to propose, vote on, and execute a malicious governance action in a single block.

The attacker reportedly funded the operation with 662 ETH withdrawn from Tornado Cash, purchased enough TOP tokens to gain majority voting power, minted 10 billion new TOP, and swapped those tokens for WETH through a Balancer pool before routing funds back through Tornado Cash.

Why Timelocks Matter

The exploit is a clear example of how governance design can become a direct security risk. Token voting can look decentralized on paper, but if a malicious actor can quickly buy voting power and execute changes without delay, the governance system can become an attack surface.

Timelocks are meant to give users, developers, and security teams time to react before a proposal becomes executable. Without that delay, a hostile vote can become a drain before anyone can stop it.

Why This Matters

For DeFi users, the story is a reminder that smart-contract risk is not limited to code bugs. Governance parameters, treasury controls, and voting thresholds can be just as important.

It also highlights how mixers and liquidity pools can be used around an exploit without being the exploited protocol themselves.

What To Watch Next

The next thing to watch is whether stolen funds move again and whether the protocol, Aragon, or affected liquidity providers publish further remediation details.

The article must not say Tornado Cash itself was hacked.

Market Context

For Bitcoinist, the story sits inside a wider shift in crypto where infrastructure, security, governance, and token utility are becoming just as important as short-term price action. Traders still care about momentum, but they also need to understand the systems, risks, and product changes behind the headlines.

The useful angle is not to overstate the development, but to explain why it belongs in the daily market conversation. Strong crypto stories increasingly come from protocol updates, official notices, security reports, court records, and on-chain data rather than recycled commentary alone.

The editorial takeaway should stay grounded: the source confirms a meaningful crypto development, but the implications depend on adoption, follow-up disclosures, or further on-chain evidence. That balance keeps the piece useful without leaning on hype or unsupported claims.

From an editorial standpoint, this makes the story worth covering as part of the day’s broader crypto operating environment rather than as a standalone hype cycle. The strongest version of the piece should stay close to the verified source, explain the practical risk or opportunity, and leave room for follow-up once more official data, filings, or project statements are available.

This report is based on information from TRM Labs’ on-chain security report.

Related Questions

QWhat vulnerability did the attacker exploit in the Token of Power protocol to drain $1.58 million?

AThe attacker exploited a weakness in the protocol's Aragon DAO setup: the absence of a timelock mechanism. This allowed them to propose, vote on, and execute a malicious governance action in a single block.

QAccording to the article, why are timelocks important in governance design?

ATimelocks are important because they give users, developers, and security teams time to review and react to a governance proposal before it becomes executable. Without this delay, a hostile actor can execute a damaging action before anyone can intervene.

QHow did the attacker fund the operation and cash out the stolen assets according to TRM's analysis?

AThe attacker funded the operation with 662 ETH withdrawn from Tornado Cash. They then purchased enough TOP tokens to gain majority voting power, minted 10 billion new TOP tokens, and swapped those tokens for WETH through a Balancer pool before routing the funds back through Tornado Cash.

QWhat key risk for DeFi users does this exploit highlight beyond smart-contract bugs?

AIt highlights that governance parameters, treasury controls, and voting thresholds can be just as critical a security risk as smart-contract code bugs. Poorly designed governance systems can themselves become an attack surface.

QWhat does the article suggest as the 'useful angle' for covering such developments in the crypto market?

AThe useful angle is to explain why the event belongs in the daily market conversation by focusing on protocol infrastructure, security, and governance, rather than overstating it or relying on hype. Coverage should stay close to verified sources, explain the practical risk or opportunity, and leave room for follow-up information.

Related Reads

XRP Ledger Daily Fees Drop Below $400 As Network Activity Question Returns

The XRP Ledger is drawing attention as daily network fees have fallen below $400. While low fees align with XRPL's design for affordable transactions and are often seen as a strength, the metric can also serve as an indicator of network demand and paid transaction volume. This data point of around $3,100 in weekly fee burn highlights the stark contrast with higher-fee chains like Ethereum and Bitcoin. The development fuels an ongoing debate. Proponents view low fees as a sign of efficiency and accessibility, while critics may question if the network is generating sufficient high-value activity relative to its market cap and payments-focused narrative. The article cautions against overstating the finding, noting a single low-fee day does not signify network failure. It instead adds context to discussions about XRPL's usage, especially alongside Ripple's broader initiatives in stablecoins (RLUSD), AI payments, and enterprise infrastructure. The report recommends monitoring for a fee rebound, checking transaction counts for a fuller picture, and confirming the trend via native explorers like Bithomp. It frames the story within a larger market shift where on-chain data, protocol updates, and infrastructure developments are becoming crucial alongside price action. The editorial stance is to present the verified data, explain its significance for assessing network activity, and avoid hype, positioning it as part of the daily crypto conversation.

bitcoinist4h ago

XRP Ledger Daily Fees Drop Below $400 As Network Activity Question Returns

bitcoinist4h ago

Ripple Launches XRPL AI Starter Kit For XRP And RLUSD Agent Payments

Ripple has released the XRPL AI Starter Kit, a Phase 1 developer toolkit aimed at enabling AI agents to make payments using XRP and its stablecoin RLUSD on the XRP Ledger. The kit supports the x402 payment standard and includes a server to connect AI systems like Claude directly to XRPL documentation. This move provides XRP with a new utility narrative focused on autonomous, machine-to-machine transactions, where agents could pay for APIs and services without manual approval for each micro-payment. For the XRP community, it represents a push into tangible payment infrastructure beyond speculation. The announcement is a concrete product update within a broader crypto shift towards valuing infrastructure and utility alongside price. The next steps involve monitoring developer adoption, documentation updates, and testnet activity. The story is based on Ripple's official blog.

bitcoinist6h ago

Ripple Launches XRPL AI Starter Kit For XRP And RLUSD Agent Payments

bitcoinist6h ago

Zcash Founder Says Anthropic AI Audit Found No Serious Protocol Bugs

Zcash founder Zooko Wilcox announced that an AI security audit of the Zcash protocol, conducted by Anthropic's Mythos model at the request of Shielded Labs, found no new serious bugs. This result provides a positive security headline for the privacy-focused cryptocurrency amidst ongoing regulatory and technical scrutiny. The audit highlights the growing use of AI-assisted tools in crypto security, though it is not a replacement for human review. The absence of major flaws supports confidence in the protocol's robustness, but developers emphasize that security hardening work continues. The story underscores a broader industry shift where infrastructure and security updates are becoming central to crypto market narratives.

bitcoinist9h ago

Zcash Founder Says Anthropic AI Audit Found No Serious Protocol Bugs

bitcoinist9h ago

Bitcoin To $400,000? Analyst Uses Gold Overlay To Make Bold 2026 Case

A social media analyst, Vivek Sen, has suggested Bitcoin could reach $400,000 in 2026 based on a chart overlay comparing its price structure to gold's historical breakout pattern. The claim, made via an X post, argues that if Bitcoin continues to mirror gold's past trajectory, a significant price surge is possible. However, the article notes this is a visual comparison and not a formal forecast or valuation model. The analysis highlights that Bitcoin and gold have different market characteristics, including size, liquidity, volatility, and investor bases. Bitcoin's price is also more influenced by factors like ETF flows, derivatives, and crypto-native leverage. For the $400,000 scenario to materialize, the article suggests sustained institutional inflows, supportive macro conditions, and a strong ongoing uptrend would be necessary. Ultimately, the report frames the $400,000 target as a speculative, bullish scenario rather than a base-case prediction. It concludes that while the gold overlay provides an interesting framework, its relevance depends on real-world market confirmation through price action and demand signals.

bitcoinist11h ago

Bitcoin To $400,000? Analyst Uses Gold Overlay To Make Bold 2026 Case

bitcoinist11h ago

Bitcoin Halving Clock Points To Bottoming Phase, But Cycle Signal Needs Caution

Crypto analyst Crypto Rover claims Bitcoin is currently in a post-halving "bottoming phase," based on a historical cycle chart suggesting repeatable market rhythms. However, the analysis is flagged as speculative trader commentary, not a confirmed signal. The article cautions that halving-cycle models are less reliable in today's more mature, institutional market influenced by ETFs, derivatives, and macro factors. While such narratives can shape trader sentiment, actual confirmation of a bottom requires support from price action, liquidity, on-chain data, and broader risk appetite. The key takeaway is to view the cycle argument as an interesting framework, not a trade signal, until Bitcoin demonstrates it can hold key support levels and build a stronger price structure.

bitcoinist13h ago

Bitcoin Halving Clock Points To Bottoming Phase, But Cycle Signal Needs Caution

bitcoinist13h ago

Trading

Spot
Futures
活动图片

Hot Categoriesright-arrow

Hot Tagsright-arrow