Skip to main content
Crypto

May 20, 2025 - 12 min

●●Intermediate

Updated: Jul 6, 2026

What Is a 51% Attack and How Does It Threaten Blockchain Security

What Is a 51% Attack and How Does It Threaten Blockchain Security

A 51% attack happens when one entity gains control of more than half of a blockchain network's mining power or stake. This single vulnerability can reverse transactions, enable double spending, and destroy trust in the entire network. This guide explains how the attack works, what it costs, and how blockchains defend against it.

Evgenij Pakhomov
Reviewed by:
Share

The 51% Attack at a Glance

QuestionAnswer
What is a 51% attackA single entity gains over 50% of a blockchain's hash power or stake and manipulates transaction history
What can attackers doReverse their own transactions, double spend coins, and censor other users' payments
What can attackers not doSteal funds from wallets they do not control or create new coins beyond protocol rules
Has Bitcoin ever been 51% attackedNo. Bitcoin's hash rate makes an attack economically unfeasible
Which blockchains have been attackedBitcoin Gold (2018), Ethereum Classic (2020), Monero (2025)
How much does it cost to attack BitcoinHundreds of millions of dollars per hour as of 2026

What Is a 51% Attack in Blockchain

Every blockchain relies on a majority of honest participants to validate transactions and add new blocks. A 51 attack in blockchain networks targets this exact assumption. When a single actor controls more than half of the network's computing power or staked tokens, the trust model breaks.

The attacker gains the ability to rewrite recent transaction history. This makes majority hash rate takeovers one of the most serious threats to any Proof of Work blockchain.

How a Single Entity Takes Over a Network

On Proof of Work blockchains, miners compete to solve complex math problems. The first miner to solve the problem adds the next block and earns a reward. A 51 percent attack begins when one miner or mining pool accumulates more hash power than the rest of the network combined.

This can happen through massive hardware purchases. It can also happen through hash rate rental services like NiceHash. On smaller networks, renting enough power to cross the 51% threshold takes just hours and a modest budget.

What Happens to Transactions During the Attack

Once the attacker controls majority hash power, they mine blocks on a private version of the blockchain. The public network continues processing transactions normally. Users and exchanges accept payments as confirmed. Nobody knows a parallel chain exists.

When the attacker releases their longer private chain, the network accepts it as the valid version. All transactions on the shorter public chain get discarded. Confirmed payments vanish. Funds return to the attacker's wallet.

Key takeaway: A 51% attack gives a single entity control over which transactions are valid on a blockchain. The attacker mines a secret chain and overwrites the public one. This breaks the trust model that makes blockchain technology work. Smaller networks with lower hash rates face the greatest risk.

How a 51% Attack Works Step by Step

The attack follows a predictable sequence that exploits how blockchains resolve disagreements between competing chains. The attacker first accumulates hash power, then mines privately, and finally broadcasts a longer chain to overwrite the real one.

Building a Secret Chain

The attacker starts mining blocks without broadcasting them to the network. Because they hold more than 50% of the total hash power, their private chain grows faster than the public one. During this time, the attacker sends cryptocurrency to an exchange on the public chain and converts it to cash or another asset.

Once the exchange confirms the deposit, the attacker broadcasts the private chain. This version does not contain the deposit transaction. Instead, it shows the funds sent back to the attacker's own wallet.

The Longest Chain Rule and Why It Matters

Most Proof of Work blockchains follow the longest chain rule. When two competing versions appear, nodes automatically accept the one with the most accumulated work. This rule normally prevents forks and keeps the network in agreement.

During a blockchain 51 attack, this rule becomes a weapon. The attacker's chain has more work because they controlled more hash power. Honest nodes have no choice but to adopt the attacker's version and discard their own blocks.

Key takeaway: The attacker mines a private chain while spending coins on the public chain. They release the longer chain to overwrite the public version. The longest chain rule forces all honest nodes to accept the attacker's history. This allows the attacker to reverse confirmed transactions and spend the same coins twice.

What Attackers Can and Cannot Do

A majority hash rate takeover does not give total control over a blockchain. 51% attacks allow manipulation of recent transaction history but cannot break the fundamental cryptographic rules of the protocol.

Double Spending Explained

Double spending is the primary goal of most attacks. The attacker spends coins on the public chain and then erases that transaction by publishing a longer private chain. The result is that the attacker keeps both the coins and whatever they received in exchange.

The 2018 Bitcoin Gold attack demonstrated this clearly. The attacker deposited BTG on exchanges, sold it, and reorganized the chain to erase the deposits. Exchanges lost roughly $18 million.

Transaction Censorship and Denial of Service

An attacker with majority control can refuse to include specific transactions in their blocks. This effectively censors certain users or addresses from using the network. The attacker can also prevent other miners from earning rewards by orphaning their blocks.

Become a Confident Trader

Master trading with our structured course designed for beginners and intermediate traders.

Step-by-step lessons
Real strategies
Risk management training

Join 10,000+ traders improving their skills

Start Course Now

These capabilities disrupt normal network operations. Users experience delays, failed transactions, and uncertainty about payment finality.

What a 51% Attack Cannot Do

An attacker cannot steal coins from other wallets. Every transaction requires a valid digital signature from the wallet owner's private key. No amount of hash power can forge these signatures.

The attacker also cannot create new coins beyond the protocol's issuance schedule. Every node validates block rewards independently. A block that awards more coins than allowed gets rejected by all honest nodes regardless of hash power behind it.

Key takeaway: Double spending is the most profitable outcome for attackers. They can also censor transactions and block other miners from earning rewards. The attack cannot touch funds in wallets the attacker does not control. Cryptographic signatures and protocol rules remain intact even during an active attack.

How Much Does a 51% Attack Cost

The economic barrier is the primary defense for any Proof of Work blockchain. Large networks require billions in hardware and electricity. Small chains can be overwhelmed for a few hundred dollars per hour.

Bitcoin 51% Attack Cost in 2026

Bitcoin's hash rate reached over 1 zettahash per second (1,000 EH/s) in early 2026 before declining to around 918 EH/s by June. A bitcoin 51 attack would require matching or exceeding this computing power.

No rental market exists at this scale for SHA 256 hardware. An attacker would need to build industrial mining facilities from scratch. Academic research estimated the hash rate rental cost alone at over $2.2 million per hour in late 2025. The true cost including hardware acquisition and electricity runs into the hundreds of millions per hour.

Why Small Blockchains Are Cheaper Targets

Small blockchains share mining algorithms with larger networks. After Ethereum switched to Proof of Stake in 2022, vast amounts of GPU hardware became available on the open market. This made Proof of Work chains using similar algorithms far cheaper to attack.

The website Crypto51.app tracks theoretical attack costs across networks. Many smaller Proof of Work chains can be attacked for under $1,000 per hour. This low barrier explains why attacks against smaller networks keep happening year after year.

NetworkEstimated 1 Hour Attack Cost (2025 to 2026)Notable Attack History
BitcoinHundreds of millions of dollarsNever successfully attacked
Ethereum Classic$5,000 to $50,000Multiple attacks in 2019 and 2020
Bitcoin GoldUnder $5,000$18 million double spend in 2018
MoneroVaries by available hash rateQubic reorg attacks in 2025
Many small PoW coinsUnder $1,000Frequent targets

The cost gap between Bitcoin and smaller chains explains the clear pattern of real world attacks. Attackers target networks where double spend profits exceed the cost of renting hash power.

Key takeaway: Bitcoin's massive hash rate makes a 51% attack bitcoin scenario economically impossible in 2026. Small Proof of Work chains remain vulnerable because attackers can rent hash power cheaply through services like NiceHash. The economics are straightforward. If the attack costs less than the double spend profit, the network will eventually face an attack.

Real World Examples of 51% Attacks

Multiple blockchains have fallen victim to majority hash rate takeovers over the past decade. Each confirmed 51 attack exposed weaknesses in networks with low hash rates and concentrated mining power.

Bitcoin Gold (2018)

In May 2018, an attacker gained majority control of the Bitcoin Gold network and double spent approximately $18 million worth of BTG. The attacker deposited coins on exchanges, converted them, and then reorganized the chain to erase the deposit transactions. The incident severely damaged BTG's reputation and market value.

Ethereum Classic (2020)

Ethereum Classic suffered repeated attacks in 2019 and 2020. The most significant event in August 2020 resulted in $5.6 million in double spend losses. Attackers exploited the abundance of cheap GPU hardware compatible with Ethereum Classic's mining algorithm. Exchanges responded by raising confirmation requirements for ETC deposits to thousands of blocks.

Monero and the Qubic Takeover (2025)

In August 2025, a project called Qubic gained over 51% of Monero's hash rate. Qubic used a "useful proof of work" model that redirected miners to Monero while rewarding them with Qubic tokens. The pool performed a six block reorganization of the Monero blockchain.

In September 2025, a larger 18 block reorg reversed approximately 117 transactions and sent payments back to the mempool. Exchanges including Kraken suspended XMR deposits as a precaution. This was the first confirmed majority hash rate takeover of a top 50 cryptocurrency by market cap.

Key takeaway: Bitcoin Gold and Ethereum Classic showed the classic 51 attack bitcoin fork pattern of targeting exchanges through double spending. Ethereum Classic's repeated incidents proved that one attack does not guarantee future protection. The 2025 Monero case demonstrated that even well established privacy coins remain vulnerable when external incentives concentrate hash power in a single pool.

How Blockchains Defend Against 51% Attacks

Networks use several strategies to make majority takeovers more expensive or less rewarding. No single solution eliminates the risk entirely, but layered defenses significantly raise the cost of a successful attack.

Proof of Stake as a Deterrent

Proof of Stake replaces mining with token staking. An attacker would need to control more than half of all staked tokens to manipulate the chain. On Ethereum, this means acquiring roughly half of 37 million staked ETH, worth approximately $112 billion as of early 2026.

Proof of Stake also introduces slashing penalties. If a validator acts maliciously, the protocol destroys a portion of their staked tokens. This financial punishment does not exist in Proof of Work, where an attacker's hardware survives even a failed attack.

Increased Confirmation Requirements

Exchanges protect themselves by requiring more block confirmations before crediting deposits. A standard Bitcoin transaction needs six confirmations. After the Ethereum Classic attacks, some exchanges raised ETC requirements to over 10,000 blocks. This created multi day waiting periods for deposits.

More confirmations mean the attacker must sustain majority control for a longer time. This multiplies the attack cost and reduces the profitability of double spending.

Checkpoints and Finality Mechanisms

Some networks use hard coded checkpoints that prevent chain reorganization past a certain block depth. Developers mark specific blocks as permanently final. The network rejects any competing chain that tries to rewrite history beyond the checkpoint.

Byzantine Fault Tolerance (BFT) consensus mechanisms offer even stronger protection. These systems require two thirds of validators to agree before a block becomes final. Research shows BFT approaches raise the attack threshold from 51% to 67% of network resources.

Key takeaway: Proof of Stake makes attacks far more expensive by requiring token ownership instead of rented hardware. Slashing penalties add a financial punishment that Proof of Work networks lack. Increased confirmation times and checkpoint systems limit the window for successful attacks. BFT consensus raises the control threshold from 51% to 67%.

Key Takeaways About 51% Attacks

A 51% attack lets a single entity rewrite blockchain transaction history by controlling majority hash power or stake. The primary goal is double spending, where the attacker spends the same coins twice and pockets the proceeds. Bitcoin has never been attacked because the cost exceeds any possible profit. Smaller Proof of Work chains remain frequent targets, with confirmed attacks on Bitcoin Gold, Ethereum Classic, and Monero. Proof of Stake, slashing, BFT consensus, and increased confirmation requirements all reduce the risk but cannot eliminate it entirely.

Frequently Asked Questions

Disclaimer: This article is for informational purposes only and does not constitute financial advice. Trading involves risk and may result in loss of capital.

Related Articles

The First Move Is Yours

Discover how Supertrade can transform your trading career. Explore challenges, access instant funding, and join a growing community of Supertraders.

Stay Ahead of the Game

Sign up to receive exclusive tips, market insights, and the latest updates from Supertrade. Don’t miss out on opportunities to grow your trading success.
Discord

Our Community

Do not skip any beat.

The Ultimate Trading Community. Join our Discord server to get the latest updates, news and more.

2026 Supertrade. All rights reserved
DiscordInstagramTelegramYouTubeX
Trading involves significant risk. Past performance is not indicative of future results. This is a simulated trading environment. Supertrade provides educational trading services.
Supertrade
Supertrade Ltd, a company incorporated under the laws of Saint Lucia with registered number 2024-00699, located at Ground Floor, Rodney Court Building, Rodney Bay, Gros Islet, Saint Lucia, LC01 101, operates and owns this website, as well as provides services under the Terms and Conditions posted on the website. Supertrade Prop Ltd, a company incorporated under the laws of England and Wales with registered number 16234284, located at 52-56 Standard Road, London, England, NW10 6EU, acting as a payment agent.