A security researcher working under contract for Shielded Labs discovered the vulnerability on May 29 using Anthropic's Claude Opus 4.8 AI model during a commissioned security audit. The flaw lived inside the Orchard Action circuit, the cryptographic component that governs shielded send and receive operations in Zcash's newer privacy pool. In plain terms: a missing constraint in the elliptic curve math meant that an attacker could spend the same shielded note multiple times, each time producing what appeared to be a legitimate transaction record. Researcher Taylor Hornby built a working proof-of-concept exploit in a test environment. "If the same tool had been run on Zcash mainnet," Hornby said, "it would have generated unlimited, undetectable counterfeit tokens." The scale of the exposure was considerable: as of February 2026, Orchard shielded transactions had reached an all-time high of 59.3% of all Zcash transactions, meaning the vulnerability sat at the heart of the network's most widely used privacy mechanism at the time of disclosure.

Zcash developers responded quickly once the bug was flagged. An emergency soft fork disabled the Orchard pool entirely at block 3,363,426 on June 2 at 02:00 UTC. Approximately 26 hours later, a full hard fork labeled NU6.2 went live at block 3,364,600, restoring Orchard with a corrected circuit. The Sapling pool, an older shielded system, and standard transparent transactions were unaffected throughout. Public disclosure came on June 5, and the market reacted immediately. ZEC fell from roughly $630 the day before to an intraday low near $250 before partially recovering to around $309 at time of writing, a decline of more than 50% from its recent peak.

The liquidations were severe. Some 19,160 traders were wiped out in a 24-hour window, with total ZEC liquidations exceeding $116 million, according to The Block; CoinGlass separately reported $81.91 million using a different methodology and time window. That placed ZEC third among all crypto assets for liquidation volume on the day, behind only Bitcoin and Ether. Arthur Hayes, co-founder of BitMEX and CIO of Maelstrom, confirmed he sold his entire ZEC position. Hayes cited a roughly 30% decline as the trigger for his exit, indicating he sold during the early leg of the sell-off, before the crash deepened to more than 50%. "I read about the exploit yesterday, and didn't appreciate how it violated my narrative mental map," Hayes wrote on X. "The 30% dump made me rethink, and I had to take profit on the entire position." One investor tracked by blockchain analytics firm Arkham had held a $174 million ZEC position for more than six months without selling and saw its value cut by more than half.

The deeper problem is not the bug itself but what it exposed about how Orchard works. Zcash co-founder and Shielded Labs head Zooko Wilcox acknowledged the core dilemma directly: "Because of the privacy properties of Orchard, there is no way to cryptographically prove whether the vulnerability was exploited before it was remediated. However, a network upgrade can be deployed to protect users and prove the integrity of the Zcash supply." That statement lands differently depending on where you sit. For users in South Asia and Africa, where privacy coins serve practical functions well beyond speculation, the supply auditability gap is not an abstract concern. India's Financial Intelligence Unit has already prohibited domestic and offshore exchanges from facilitating privacy coin transactions, and the Orchard bug gives regulators concrete technical grounds to justify stricter enforcement. In January 2026, India fined Bybit Fintech ₹9.27 crore (approximately $1.1 million) for AML non-compliance as part of the same regulatory sweep targeting privacy coins, a sign that enforcement is active and not merely prospective. In Pakistan, the newly passed Virtual Assets Act 2026 established a national crypto regulator, but lacks specific privacy coin provisions; this disclosure could accelerate that work. In Nigeria, where the Investments and Securities Act 2025 brought digital assets under SEC oversight, licensed exchanges were already reluctant to list ZEC. That reluctance will likely harden. In Kenya, the Capital Markets Authority is actively examining crypto-asset frameworks, and the Orchard incident is expected to inform its emerging guidance on privacy coin listings. Across the broader region, an estimated 81% of global privacy coin trading volume originates from MENA, CIS, and Southeast Asia, according to CoinLaw, meaning the financial fallout from this event falls disproportionately outside Western markets.

Some in the industry offered a measured read. Craig Salm, chief legal officer at Grayscale, argued that exploitation before the patch was "extremely unlikely" given the technical difficulty and opportunity costs involved. The Zcash Foundation also noted that its existing turnstile accounting mechanism (a tool that tracks total value flowing in and out of each pool) confirmed no evidence of unauthorized value creation during the vulnerability window. Shielded Labs has now proposed a new network upgrade that would formally embed turnstile accounting into Zcash's protocol, making it possible to prove supply integrity even when individual transaction details remain hidden. That proposal is pending community governance approval.

The Orchard incident carries lessons well beyond Zcash. Any protocol using custom zero-knowledge proof circuits, particularly those relying on hand-rolled circuit architectures, carries analogous risks if circuit constraints are not exhaustively reviewed. The fact that an AI model caught a flaw that four years of human audits missed will push developers across the ZK ecosystem to reconsider how they structure security reviews. Shielded Labs is also exploring formal verification combined with dual proof systems as a long-term approach to preventing under-constraint vulnerabilities, a direction that developers in India, Nigeria, and across the ZK ecosystem are watching closely. Monero (XMR), the leading alternative privacy coin, is widely seen as the primary competitive beneficiary of Zcash's reputational damage, as users and exchanges weigh whether to redirect privacy coin exposure elsewhere. For Zcash specifically, rebuilding confidence will depend on whether the turnstile accounting proposal clears governance, how quickly exchanges restore ZEC listings, and whether the privacy guarantees that made Orchard valuable can coexist with the auditability that regulators and users now need to see.