The decentralized finance (DeFi) sector has encountered a new security breach involving the Token of Power (TOP) project. On June 9, 2026, security monitoring systems identified a series of malicious transactions targeting the protocol’s liquidity infrastructure. According to reports from blockchain security firm Cyvers Alerts, the exploit resulted in the drainage of approximately $1.58 million from a specific liquidity pool. The attacker utilized sophisticated methods to bypass security measures and obfuscate the movement of the misappropriated digital assets.
Mechanism of the Malicious Transaction
The breach specifically targeted the TOP/WETH Balancer V1 liquidity pool. Technical analysis indicates that the perpetrator initiated the attack using an address previously funded via TornadoCash, a popular non-custodial privacy protocol. By utilizing these initial funds, the actor was able to execute unauthorized transactions that effectively emptied the pool's reserves of Wrapped Ethereum (WETH) and TOP tokens.
TornadoCash is frequently used in the decentralized ecosystem to break the on-chain link between source and destination addresses, making the tracking of funds significantly more complex for investigators.
The primary details of the incident include:
- The total estimated loss is valued at $1.58 million based on market prices at the time of the exploit.
- The attacker successfully targeted vulnerabilities within the Balancer V1 framework as utilized by Token of Power.
- All stolen assets were subsequently redeposited into TornadoCash to prevent further tracking by security agencies.
Security Warnings and Project Response
Following the detection of the anomaly, Cyvers Alerts categorized the event as a suspected scam attack. Security analysts have urged the community to exercise extreme caution when interacting with the project's smart contracts during the ongoing investigation.
"The security system detected suspicious transactions related to Token of Power (TOP). The related behavior is suspected to be a scam attack", stated the report from Cyvers.
This incident highlights the persistent risks associated with older versions of automated market maker (AMM) protocols. While Balancer V2 offers enhanced security features, the continued use of V1 pools by certain projects can sometimes leave liquidity providers exposed to known or emerging vectors of attack.
The exploitation of the Token of Power liquidity pool serves as a reminder of the volatility and technical risks inherent in the Ethereum-based DeFi landscape. As of the time of publication, the project’s developers have not released a full post-mortem report. Investors and users are advised to monitor official communication channels and avoid additional deposits into the affected TOP/WETH pools until a formal security audit or remediation plan is presented.
Frequently Asked Questions
Quick answers to the most common questions about this topic.