Zcash Slumps After Critical Vulnerability Raises Questions Over Shielded Pool Integrity

A newly disclosed security flaw in Zcash’s Orchard shielded transaction pool has triggered renewed scrutiny over the protocol’s privacy architecture, after researchers warned it could theoretically allow the creation of counterfeit tokens within the system.

The vulnerability, identified by security engineer Taylor Hornby and published by Shielded Labs on X, was followed by a sharp selloff in Zcash, with the token (ZEC) falling 31% in a matter of hours before stabilizing near $409.64, according to market data.

AI-assisted audit exposes long-standing circuit flaw

Shielded Labs, an independent organization supporting Zcash development, said it commissioned Hornby in April to conduct a protocol review using both traditional methods and AI-assisted security tooling.

On May 29, Hornby reportedly identified a flaw in the Orchard circuit, Zcash’s zero-knowledge proof system responsible for validating shielded transactions. The issue was escalated to the Zcash Open Development Lab (ZODL), and a patch was deployed on June 1.

According to the disclosure, the vulnerability existed since Orchard’s activation in May 2022.

Shielded Labs said Hornby leveraged Anthropic’s Opus 4.8 model alongside custom AI-driven testing frameworks to construct a working exploit in a controlled environment, demonstrating that it could generate “unlimited, undetectable counterfeit ZEC.”

The flaw stemmed from an under-constrained component in the Orchard circuit, which allowed invalid inputs to pass elliptic curve verification checks.

Why the flaw matters for shielded transactions

The Orchard pool is Zcash’s privacy layer, enabling fully shielded transfers that conceal sender, receiver, and transaction value using zero-knowledge proofs.

Within this system, the circuit is responsible for ensuring that only mathematically valid transactions are accepted. Any weakness in constraint logic can, in theory, undermine the integrity of the shielded supply verification model.

While the bug was fixed, its multi-year presence raised questions about whether it could have been exploited undetected.

Uncertainty over prior exploitation

Shielded Labs said it cannot conclusively determine whether the vulnerability was ever used maliciously due to the privacy-preserving design of the Orchard pool.

However, the organization stated it is not “overly concerned” that counterfeiting occurred before the patch, arguing that the flaw went unnoticed even under extensive cryptographic review.

The researchers added that the discovery was the result of proactive security testing intended to identify vulnerabilities before adversaries could exploit them.

Supply integrity proposal under discussion

Following the disclosure, Shielded Labs said it is evaluating a potential network upgrade aimed at improving transparency around supply integrity in the shielded pool.

The proposal would allow users to verify the total supply within Orchard and introduce a new shielded pool design with stricter accounting mechanisms applied to all transactions.

Market reaction and broader implications

Zcash experienced significant volatility following the disclosure, with the sharpest price decline occurring within hours of the announcement.

While Shielded Labs emphasized that the vulnerability has been patched and does not confirm any confirmed exploitation, the incident highlights ongoing risks in advanced zero-knowledge systems where complex cryptographic constraints underpin supply validity.

The organization stated that Zcash remains structurally sound and is positioned to recover, but acknowledged that transparency around shielded asset integrity will remain a key focus going forward.