Video: Blockchain Architecture - Blockchain Vulnerabilities

## Understanding Common Blockchain Vulnerabilities Welcome to this lesson on blockchain vulnerabilities. Here, we will explore the different ways a blockchain network can be attacked. Before diving in, it’s important to clarify a few key points. First, this lesson covers attacks relevant to both Proof of Work (PoW) and Proof of Stake (PoS) consensus mechanisms. Second, for major blockchains like Bitcoin and Ethereum, most of the attacks we'll discuss are **economically infeasible** and have never been successfully executed. However, these vulnerabilities pose a real threat to smaller blockchains with fewer network participants, less computational power, or a lower total economic stake. This overview is designed to be high-level, providing you with the essential terminology and concepts. Aspiring developers are strongly encouraged to consult supplementary materials, such as the Ethereum documentation, to gain a deeper understanding of how to build resilient systems. The primary goal is for you to grasp the fundamental principles behind blockchain attacks. ## Sybil Attacks and Network Resistance A Sybil attack is a foundational threat model in distributed systems and is crucial for understanding blockchain security. In a Sybil attack, a single malicious entity attempts to subvert a network by creating and controlling a large number of fake identities, or nodes. The objective is to gain a majority of control over the system, allowing the attacker to outvote honest participants. Think of it as one person pretending to be many people in order to win a vote. If a Sybil attack were successful, the attacker could inflict significant damage on the network, including: * **Approving fraudulent transactions.** * **Double-spending:** Spending tokens, converting them to fiat currency, and then reversing the original transaction to reclaim the tokens. * **Censoring or blocking legitimate transactions.** * **Re-ordering transactions for financial gain.** * **Rewriting the blockchain's history.** Fortunately, major blockchains like Bitcoin and Ethereum have powerful built-in defenses against Sybil attacks. Their consensus mechanisms are designed to make such an attack nearly impossible. * **Proof of Work (PoW):** Bitcoin’s security is rooted in computational power (hash rate), not the number of nodes an entity controls. An attacker cannot fake computational work; they must genuinely expend massive amounts of energy and capital to acquire enough mining hardware to control the network. The cost to achieve this is prohibitively expensive. * **Proof of Stake (PoS):** Ethereum’s security is based on an economic stake. To participate in consensus, validators must lock up a significant amount of the network’s native cryptocurrency (ETH). An attacker cannot fake ownership of cryptocurrency. They would need to acquire a vast and prohibitively expensive amount of ETH to gain control. ## The 51% Attack Explained A 51% attack, also known as a majority attack, is a specific type of attack where a malicious actor gains control over the majority of the network's consensus power. In a **Proof of Work** system like Bitcoin, an attacker who controls more than 50% of the network's total mining hash rate can overpower the honest nodes. With this majority, they can create their own version of the blockchain faster than anyone else, effectively rewriting its history. For example, an attacker could spend their Bitcoin to buy a car, wait for the transaction to be confirmed, and then use their majority hash power to create a longer, alternate chain where that transaction never occurred. In this scenario, they would keep both the car and their Bitcoin. In a **Proof of Stake** system like Ethereum, a similar attack occurs if an entity controls over 50% of the total staked ETH. This control allows them to manipulate the **fork choice algorithm**—the rule validators use to determine the canonical version of the blockchain. With a 51% stake, an attacker can rewrite recent history and reorder or exclude transactions for profit. However, they cannot reverse finalized blocks. To gain complete control, including the ability to finalize malicious blocks and fully rewrite history, an attacker would need at least **two-thirds (67%)** of the total staked ETH, which is the threshold required for finality. For both Bitcoin and Ethereum, a successful 51% attack would cost tens of billions of dollars. Furthermore, such an attack would likely fail due to the **social layer** of defense. The blockchain community would quickly identify the attack, socially agree to disregard the malicious chain, and execute a **hard fork** to a new, honest version of the blockchain. This social consensus would render the attacker's massive investment worthless. It’s like spending a fortune to rob a bank, only for your actions to make all the stolen money valueless. ## Blockchain Reorganization (Re-orgs) A blockchain reorganization, or "re-org," is the event that occurs when a blockchain's history is rewritten. While this is the goal of a malicious 51% attack, small, natural re-orgs can occur in Proof of Work systems. This happens when two miners find a valid block at nearly the same time, creating a temporary fork. The network eventually resolves this by building upon whichever chain grows longer first. This is why **confirmations** are crucial on PoW chains. The more blocks that are added on top of the block containing your transaction, the deeper it is buried in the chain, and the less likely it is to be undone by a re-org. In Proof of Stake systems like Ethereum, the finality mechanism makes malicious re-orgs significantly harder to execute. ## MEV and Sandwich Attacks Not all attacks require majority control of a network. Maximal Extractable Value (MEV) refers to the maximum value that can be extracted from block production beyond the standard block reward and transaction fees. This often involves exploiting the order of transactions within a block, leading to strategies like the "sandwich attack." When you submit a transaction, it first enters a public waiting area called the **mempool**. Here, it waits for a validator (or miner) to select it for inclusion in the next block. The validator building the block has the power to decide which transactions to include and in what order. A sandwich attack unfolds as follows: 1. A user submits a large buy order for a token, which enters the mempool. 2. A sophisticated bot monitoring the mempool detects this large, market-moving transaction. 3. The bot "sandwiches" the user's transaction: * **Front-running:** The bot submits its own buy order for the same token with a higher gas fee. This incentivizes the validator to place the bot's transaction *before* the user's. This purchase slightly increases the token's price. * **Execution:** The user's large buy order now executes at this slightly higher price, pushing the price up even further. * **Back-running:** The bot immediately submits a sell order for the tokens it just bought, selling them at the new peak price for a guaranteed, risk-free profit. In this scenario, the user pays a higher price than anticipated (an effect known as slippage), while the bot profits from reordering transactions. While this practice is widely seen as unfair, it is currently permissible on public blockchains. ## Bugs in Client Software Blockchain vulnerabilities are not always a result of flaws in the protocol's design. Sometimes, they stem from bugs in the client software that nodes run. This software is written by humans, who can make mistakes. A famous example is the **184 Billion Bitcoin Bug of 2010**. An attacker discovered an integer overflow bug in Bitcoin's code that allowed them to create 184 billion BTC out of thin air, violating the hard-coded maximum supply of 21 million. The Bitcoin community responded swiftly. Developers fixed the bug, and the network executed a hard fork to rewind the blockchain to a state before the malicious transaction occurred, effectively erasing the counterfeit coins. This incident underscores the critical importance of rigorous code auditing and testing. ## Replay Attacks A replay attack occurs when a malicious actor takes a valid, signed transaction from one blockchain and re-broadcasts or "replays" it on another compatible chain. Imagine photocopying a signed check and attempting to cash it a second time. This could happen if you sign a transaction on Ethereum, and an attacker replays it on a compatible network like Optimism or Arbitrum to drain your funds there. Modern blockchains have implemented robust protections to prevent this. * **Chain ID:** Every transaction includes a unique identifier for the specific blockchain it is intended for (e.g., Chain ID `1` for Ethereum). A transaction signed for one chain is invalid on any other chain. * **Nonce:** To prevent a transaction from being replayed on the *same* chain, each transaction from an account includes a nonce, which acts as a transaction counter. An account's first transaction has nonce `0`, the second has nonce `1`, and so on. A transaction with a specific nonce can only be processed once, making it unique and non-repeatable. ## Why Major Blockchains Remain Secure The key insight to take away is that blockchain protocols don't make attacks *impossible*—they make them **economically irrational**. The system is meticulously designed so that acting as an honest participant is always more profitable than attempting to cheat. Understanding these vulnerabilities helps you appreciate why confirmations are important, why major blockchains are considered highly secure, and what risks are associated with smaller, less-established networks. The economic incentives are the ultimate bedrock of network security.

Understanding Common Blockchain Vulnerabilities

Welcome to this lesson on blockchain vulnerabilities. Here, we will explore the different ways a blockchain network can be attacked. Before diving in, it’s important to clarify a few key points.

First, this lesson covers attacks relevant to both Proof of Work (PoW) and Proof of Stake (PoS) consensus mechanisms. Second, for major blockchains like Bitcoin and Ethereum, most of the attacks we'll discuss are economically infeasible and have never been successfully executed. However, these vulnerabilities pose a real threat to smaller blockchains with fewer network participants, less computational power, or a lower total economic stake.

This overview is designed to be high-level, providing you with the essential terminology and concepts. Aspiring developers are strongly encouraged to consult supplementary materials, such as the Ethereum documentation, to gain a deeper understanding of how to build resilient systems. The primary goal is for you to grasp the fundamental principles behind blockchain attacks.

Sybil Attacks and Network Resistance

A Sybil attack is a foundational threat model in distributed systems and is crucial for understanding blockchain security. In a Sybil attack, a single malicious entity attempts to subvert a network by creating and controlling a large number of fake identities, or nodes. The objective is to gain a majority of control over the system, allowing the attacker to outvote honest participants. Think of it as one person pretending to be many people in order to win a vote.

If a Sybil attack were successful, the attacker could inflict significant damage on the network, including:

Approving fraudulent transactions.
Double-spending: Spending tokens, converting them to fiat currency, and then reversing the original transaction to reclaim the tokens.
Censoring or blocking legitimate transactions.
Re-ordering transactions for financial gain.
Rewriting the blockchain's history.

Fortunately, major blockchains like Bitcoin and Ethereum have powerful built-in defenses against Sybil attacks. Their consensus mechanisms are designed to make such an attack nearly impossible.

Proof of Work (PoW): Bitcoin’s security is rooted in computational power (hash rate), not the number of nodes an entity controls. An attacker cannot fake computational work; they must genuinely expend massive amounts of energy and capital to acquire enough mining hardware to control the network. The cost to achieve this is prohibitively expensive.
Proof of Stake (PoS): Ethereum’s security is based on an economic stake. To participate in consensus, validators must lock up a significant amount of the network’s native cryptocurrency (ETH). An attacker cannot fake ownership of cryptocurrency. They would need to acquire a vast and prohibitively expensive amount of ETH to gain control.

The 51% Attack Explained

A 51% attack, also known as a majority attack, is a specific type of attack where a malicious actor gains control over the majority of the network's consensus power.

In a Proof of Work system like Bitcoin, an attacker who controls more than 50% of the network's total mining hash rate can overpower the honest nodes. With this majority, they can create their own version of the blockchain faster than anyone else, effectively rewriting its history. For example, an attacker could spend their Bitcoin to buy a car, wait for the transaction to be confirmed, and then use their majority hash power to create a longer, alternate chain where that transaction never occurred. In this scenario, they would keep both the car and their Bitcoin.

In a Proof of Stake system like Ethereum, a similar attack occurs if an entity controls over 50% of the total staked ETH. This control allows them to manipulate the fork choice algorithm—the rule validators use to determine the canonical version of the blockchain. With a 51% stake, an attacker can rewrite recent history and reorder or exclude transactions for profit. However, they cannot reverse finalized blocks. To gain complete control, including the ability to finalize malicious blocks and fully rewrite history, an attacker would need at least two-thirds (67%) of the total staked ETH, which is the threshold required for finality.

For both Bitcoin and Ethereum, a successful 51% attack would cost tens of billions of dollars. Furthermore, such an attack would likely fail due to the social layer of defense. The blockchain community would quickly identify the attack, socially agree to disregard the malicious chain, and execute a hard fork to a new, honest version of the blockchain. This social consensus would render the attacker's massive investment worthless. It’s like spending a fortune to rob a bank, only for your actions to make all the stolen money valueless.

Blockchain Reorganization (Re-orgs)

A blockchain reorganization, or "re-org," is the event that occurs when a blockchain's history is rewritten. While this is the goal of a malicious 51% attack, small, natural re-orgs can occur in Proof of Work systems. This happens when two miners find a valid block at nearly the same time, creating a temporary fork. The network eventually resolves this by building upon whichever chain grows longer first.

This is why confirmations are crucial on PoW chains. The more blocks that are added on top of the block containing your transaction, the deeper it is buried in the chain, and the less likely it is to be undone by a re-org. In Proof of Stake systems like Ethereum, the finality mechanism makes malicious re-orgs significantly harder to execute.

MEV and Sandwich Attacks

Not all attacks require majority control of a network. Maximal Extractable Value (MEV) refers to the maximum value that can be extracted from block production beyond the standard block reward and transaction fees. This often involves exploiting the order of transactions within a block, leading to strategies like the "sandwich attack."

When you submit a transaction, it first enters a public waiting area called the mempool. Here, it waits for a validator (or miner) to select it for inclusion in the next block. The validator building the block has the power to decide which transactions to include and in what order.

A sandwich attack unfolds as follows:

A user submits a large buy order for a token, which enters the mempool.
A sophisticated bot monitoring the mempool detects this large, market-moving transaction.
The bot "sandwiches" the user's transaction:
- Front-running: The bot submits its own buy order for the same token with a higher gas fee. This incentivizes the validator to place the bot's transaction before the user's. This purchase slightly increases the token's price.
- Execution: The user's large buy order now executes at this slightly higher price, pushing the price up even further.
- Back-running: The bot immediately submits a sell order for the tokens it just bought, selling them at the new peak price for a guaranteed, risk-free profit.

In this scenario, the user pays a higher price than anticipated (an effect known as slippage), while the bot profits from reordering transactions. While this practice is widely seen as unfair, it is currently permissible on public blockchains.

Bugs in Client Software

Blockchain vulnerabilities are not always a result of flaws in the protocol's design. Sometimes, they stem from bugs in the client software that nodes run. This software is written by humans, who can make mistakes.

A famous example is the 184 Billion Bitcoin Bug of 2010. An attacker discovered an integer overflow bug in Bitcoin's code that allowed them to create 184 billion BTC out of thin air, violating the hard-coded maximum supply of 21 million. The Bitcoin community responded swiftly. Developers fixed the bug, and the network executed a hard fork to rewind the blockchain to a state before the malicious transaction occurred, effectively erasing the counterfeit coins. This incident underscores the critical importance of rigorous code auditing and testing.

Replay Attacks

A replay attack occurs when a malicious actor takes a valid, signed transaction from one blockchain and re-broadcasts or "replays" it on another compatible chain. Imagine photocopying a signed check and attempting to cash it a second time. This could happen if you sign a transaction on Ethereum, and an attacker replays it on a compatible network like Optimism or Arbitrum to drain your funds there.

Modern blockchains have implemented robust protections to prevent this.

Chain ID: Every transaction includes a unique identifier for the specific blockchain it is intended for (e.g., Chain ID 1 for Ethereum). A transaction signed for one chain is invalid on any other chain.
Nonce: To prevent a transaction from being replayed on the same chain, each transaction from an account includes a nonce, which acts as a transaction counter. An account's first transaction has nonce 0, the second has nonce 1, and so on. A transaction with a specific nonce can only be processed once, making it unique and non-repeatable.

Why Major Blockchains Remain Secure

The key insight to take away is that blockchain protocols don't make attacks impossible—they make them economically irrational. The system is meticulously designed so that acting as an honest participant is always more profitable than attempting to cheat. Understanding these vulnerabilities helps you appreciate why confirmations are important, why major blockchains are considered highly secure, and what risks are associated with smaller, less-established networks. The economic incentives are the ultimate bedrock of network security.

Understanding Common Blockchain Vulnerabilities

Sybil Attacks and Network Resistance

The 51% Attack Explained

Blockchain Reorganization (Re-orgs)

MEV and Sandwich Attacks

Bugs in Client Software

Replay Attacks

Why Major Blockchains Remain Secure

Blockchain Vulnerabilities

What you'll learn

Course Description

Who is this course for?

Potential Careers

Meet your instructors

Thanks for checking us out

What you'll learn

Course Description

Who is this course for?

Potential Careers

Meet your instructors