Markets
Share this article

Zcash Team Reveals It Fixed a Catastrophic Coin Counterfeiting Bug

The company behind the privacy-minded cryptocurrency zcash said Tuesday that it moved last year to fix a catastrophic bug that could have been used to print infinite coins.

By Alyssa Hertig
Updated Sep 13, 2021, 8:52 a.m. Published Feb 5, 2019, 8:06 p.m.
zcash

The company behind the privacy-minded cryptocurrency zcash has revealed that it fixed a catastrophic code bug last year that could have been used to print infinite coins.

According to a report published Tuesday, zcash cryptographer Ariel Gabizon discovered a "subtle" bug a little less than a year ago in zk-SNARKS, the bleeding-edge cryptography the cryptocurrency uses to shield balances and user identities, which are implemented so that outsiders can't see financial information users want kept to themselves.

STORY CONTINUES BELOW
Don't miss another story.Subscribe to the Crypto Daybook Americas Newsletter today. See all newsletters
By signing up, you will receive emails about CoinDesk products and you agree to our terms of use and privacy policy.

Once the zcash team found out about the bug, they kept it quiet and pulled together a fix, which they then added to zcash's large Sapling upgrade, which was executed October last year. Today, though, is the first time the company has revealed it to the larger public.

If exploited, an attacker would have been able to print an infinite amount of zcash tokens.

The blog post, written by zcash marketing director Josh Swihart, director of product security Benjamin Winston, and engineer Sean Bowe, explained:

"Prior to its remediation, an attacker could have created fake Zcash without being detected. The counterfeiting vulnerability has been fully remediated in Zcash and no action is required by Zcash users."

Because zk-SNARKs are so bleeding-edge, some have criticized zcash for using the technology so early on. (It's so early stage that zcash is the largest implementation that uses the cryptography so far.) Plus, due to the nature of the privacy technology, which shields data, it's difficult to know for sure whether tokens have been counterfeited.

Still, the team added that they don't think zcash was at risk of the counterfeiting bug for a number of reasons, including "discovery of the vulnerability would have required a high level of technical and cryptographic sophistication that very few people possess."

And indeed, some have applauded the team's handling of the bug – including famed NSA whistleblower Edward Snowden.

"A lot of people wonder why I like #Zcash despite the Founder's Reward. Here's a reason: that tax funds a quality team that catches and kills serious bugs in-house, before they get exploited," he tweeted. "Some other projects learn about bugs like this only AFTER people have lost money."

Zcash image via Shutterstock

Zcashzk-SNARKsZcash CompanyFeaturesother-public-protocolsTechnology News

More For You

Protocol Research: GoPlus Security

By CoinDesk Research
Nov 14, 2025
Commissioned byGoPlus
GP Basic Image

What to know:

  • As of October 2025, GoPlus has generated $4.7M in total revenue across its product lines. The GoPlus App is the primary revenue driver, contributing $2.5M (approx. 53%), followed by the SafeToken Protocol at $1.7M.
  • GoPlus Intelligence's Token Security API averaged 717 million monthly calls year-to-date in 2025 , with a peak of nearly 1 billion calls in February 2025. Total blockchain-level requests, including transaction simulations, averaged an additional 350 million per month.
  • Since its January 2025 launch , the $GPS token has registered over $5B in total spot volume and $10B in derivatives volume in 2025. Monthly spot volume peaked in March 2025 at over $1.1B , while derivatives volume peaked the same month at over $4B.
View Full Report

More For You

TON Slips 3.3% to $1.59 as Broader Crypto Market Weakens

By CD Analytics, Francisco Rodrigues|Edited by Jamie Crawley
3 minutes ago
"TON price chart shows a 1.29% rise to $1.60 with increased trading volume despite bearish market conditions."

The token is consolidating below resistance at $1.65, with support forming above $1.59, and traders are watching for a breakout above $1.70 to regain momentum.

What to know:

  • TON dropped 3.3% to $1.596, retreating alongside the broader crypto market, despite a 20% surge in trading volume suggesting growing institutional interest.
  • The token is consolidating below resistance at $1.65, with support forming above $1.59, and traders are watching for a breakout above $1.70 to regain bullish momentum.
  • TON's fundamentals, including rising onchain revenue and wallet adoption, are positive, but short-term market pressure and uncertainty are currently weighing on the token's price.
Read full story