Reports suggest that user deposits on the Tornado Cash token mixer are vulnerable due to the introduction of malicious code into the protocol.