Key Takeaways

• A 51% attack occurs when a single entity or group gains control of more than half of a blockchain network's computing power, potentially enabling transaction manipulation.

• An attacker with majority hash power could double-spend coins, censor transactions, or prevent other miners from producing valid blocks, but cannot steal funds from other addresses or create coins outside protocol rules.

• Large networks like Bitcoin are considered highly resistant to 51% attacks due to enormous hardware costs, energy requirements, and game-theoretic disincentives for miners.

• Smaller proof-of-work blockchains remain more vulnerable because attackers can rent sufficient hash power from marketplace services at relatively low cost.

Introduction

One of the key strengths of proof-of-work (PoW) blockchains like Bitcoin is the distributed nature of building and verifying data. The decentralized work of network nodes ensures that protocol rules are followed and that all participants agree on the current state of the ledger. 

This means the majority of nodes must regularly reach consensus regarding the mining process, the software version being used, and the validity of transactions.

However, this security model relies on an assumption: that no single party controls the majority of the network's computational resources. When that assumption breaks down, the network becomes vulnerable to what is known as a 51% attack, also called a majority attack. Understanding this threat is important for anyone interacting with PoW-based digital assets.

What Is a 51% Attack?

A 51% attack is a potential attack on a blockchain network where a single entity or organization controls the majority of the hash rate, potentially causing network disruption. In such a scenario, the attacker would have enough mining power to intentionally exclude or modify the ordering of transactions.

They could also reverse transactions they made while in control, leading to a double-spending problem. A successful majority attack could also allow the attacker to prevent some or all transactions from being confirmed (transaction denial of service) or to prevent other miners from mining, resulting in what is known as a mining monopoly.

What a 51% attack cannot do

A majority attack would not allow the attacker to reverse transactions made by other users or to prevent transactions from being created and broadcast to the network. Changing the block reward, creating coins out of thin air, or stealing coins that never belonged to the attacker are also not possible through a 51% attack. The attacker can only manipulate their own recent transactions.

How a 51% Attack Works

In a PoW system, miners compete to solve a computational puzzle for each new block. The miner who finds a valid solution first broadcasts the block to the network and receives the block reward. The "longest chain" (or more precisely, the chain with the most accumulated work) is treated as the valid chain by all nodes.

An attacker with majority hash power can secretly mine an alternative chain of blocks while the rest of the network mines the public chain. Because the attacker has more computational power, their private chain will grow faster. Once the attacker has built a longer chain, they broadcast it to the network, causing a reorganization. All transactions included in the public chain but not in the attacker's chain are reversed.

This enables double-spending: the attacker can send coins to a merchant on the public chain, receive goods or services, and then publish the longer private chain where those coins were never sent, effectively recovering the funds.

How Likely Is a 51% Attack?

Since a blockchain is maintained by a distributed network of nodes, all participants cooperate in the process of reaching consensus. This is one of the reasons larger networks tend to be highly secure. The bigger the network, the stronger the protection against attacks and data corruption.

When it comes to PoW blockchains, the more hash rate a miner has, the higher the chances of finding a valid solution for the next block. Mining involves a large number of hashing attempts, and more computational power means more attempts per second. 

Several early miners joined the Bitcoin network to contribute to its growth and security. With Bitcoin's rising value, numerous new miners entered the system to compete for block rewards (currently 3.125 BTC per block after the April 2024 halving).

This competitive landscape is one reason Bitcoin is considered secure. Miners have no incentive to invest large amounts of resources unless they are acting honestly and striving to receive the block reward. 

A 51% attack on Bitcoin is generally regarded as economically implausible due to the magnitude of the network. As of 2025-2026, Bitcoin's hash rate operates at hundreds of exahashes per second, generated primarily by specialized ASIC hardware.

The estimated cost to mount a 51% attack on Bitcoin runs into billions of USD in capital expenditure for hardware alone, plus enormous ongoing energy costs. There is no liquid market to rent enough SHA-256 hash power to achieve majority control of Bitcoin. 

Moreover, a successful attack would likely crash Bitcoin's price, devaluing the attacker's own holdings and mining infrastructure. Once a blockchain grows large enough, the likelihood of a single person or group obtaining enough computing power to overwhelm all the other participants rapidly drops. 

Also, changing previously confirmed blocks gets more difficult as the chain grows, because the blocks are all linked through cryptographic proofs. The more confirmations a block has, the higher the costs for altering or reverting transactions in it. A successful attack would probably only be able to modify the transactions of a few recent blocks for a short period of time.

51% Attacks on Smaller Blockchains

Although it is extremely difficult to achieve majority hash power on Bitcoin, that is not the case for smaller cryptocurrency networks. When compared to Bitcoin, altcoins have a relatively low amount of hashing power securing their blockchain, sometimes measured in megahashes or petahashes per second rather than exahashes.

This lower security budget makes 51% attacks operationally feasible. Attackers can rent hash power from marketplace services and point it at a vulnerable chain for as little as a few hours. If the cost to rent enough power for a brief period is less than the potential double-spend gain on an exchange, the attack becomes economically attractive.

Notable historical examples of successful 51% attacks include Bitcoin Gold (2018, 2020), Ethereum Classic (multiple attacks in 2020), and Monacoin. In each case, attackers were able to execute deep chain reorganizations and double-spend significant sums. In 2025-2026, the pattern has continued with smaller PoW chains remaining exposed, and exchanges have responded by increasing confirmation requirements or delisting vulnerable assets.

Defenses Against 51% Attacks

Several strategies can help reduce the risk of 51% attacks on PoW blockchains:

• Increased confirmation depth: For high-value transfers, waiting for more block confirmations reduces the window in which a chain reorganization can reverse the transaction.

• Hash-rate monitoring: Networks and exchanges can detect sudden spikes in hash rate, pool concentration anomalies, or suspicious reorganization attempts, triggering protective measures.

• Hybrid consensus and checkpoints: Some chains reduce risk by combining PoW with proof-of-stake elements, implementing finality checkpoints, or adding penalties for malicious validator behavior.

• Merge mining: Smaller PoW chains can leverage the hash power of a larger chain (such as Bitcoin) through merge mining, significantly increasing the cost of an attack.

• Adaptive exchange policies: Exchanges may raise confirmation requirements when a coin's hash rate drops or delist assets where the cost to attack is consistently lower than daily trading volume.

FAQ

Can a 51% attack destroy Bitcoin?

A sustained 51% attack on Bitcoin is considered extremely unlikely given the billions of dollars in hardware investment required and the game-theoretic disincentives. Even if an attacker temporarily disrupted the network, the protocol could be modified in response. However, such an event would probably damage market confidence significantly.

How much would it cost to 51% attack Bitcoin?

As of 2025-2026, estimates suggest the capital expenditure for specialized ASICs alone would be in the billions of USD, in addition to enormous energy costs. There is no rental market large enough to supply the required SHA-256 hash power. The attack would also likely crash Bitcoin's price, making it unprofitable.

What is the difference between a 51% attack and a double-spend?

A 51% attack is the method (gaining majority hash power and mining a secret chain), while double-spending is one possible outcome. The attacker sends coins, receives value in return, and then publishes a longer chain that reverses the payment. Not all 51% attacks result in double-spending; some may focus on transaction censorship.

Are proof-of-stake blockchains vulnerable to 51% attacks?

Proof-of-stake networks face a similar concept where an attacker would need to control the majority of staked tokens rather than hash power. However, the economic mechanics are different: acquiring majority stake is visible on-chain, slashing penalties can destroy attacker capital, and many PoS chains implement additional finality mechanisms.

Has a major blockchain ever been successfully 51% attacked?

Ethereum Classic suffered multiple 51% attacks in 2020, with attackers executing deep chain reorganizations and double-spending millions of dollars. Bitcoin Gold was also attacked in 2018 and 2020. Bitcoin itself has never been successfully 51% attacked due to its enormous hash-rate security.

Closing Thoughts

The 51% attack represents one of the fundamental security considerations in proof-of-work blockchain design. While large networks like Bitcoin have effectively priced out this attack through sheer hash-rate scale and economic disincentives, smaller PoW chains remain exposed, particularly to short-burst rental attacks. 

Understanding this threat helps users and developers make informed decisions about confirmation requirements, which networks to trust with high-value transactions, and how consensus design choices affect security. As blockchain technology evolves, the combination of economic deterrents, monitoring tools, and hybrid consensus models continues to strengthen defenses against majority attacks.

Further Reading

• What Is Cryptocurrency Mining and How Does It Work?

• What Is the Blockchain Trilemma?

• What Happens After All Bitcoins Are Mined?

• What Is a Crypto Mining Rig?

• The Bitcoin Whitepaper Explained

Disclaimer: This content is presented to you on an "as is" basis for general information and educational purposes only, without representation or warranty of any kind. It should not be construed as financial, legal, or other professional advice, nor is it intended to recommend the purchase of any specific product or service. You should seek your own advice from appropriate professional advisors. Where the content is contributed by a third-party contributor, please note that those views expressed belong to the third-party contributor, and do not necessarily reflect those of Binance Academy. Digital asset prices can be volatile. The value of your investment may go down or up and you may not get back the amount invested. You are solely responsible for your investment decisions and Binance Academy is not liable for any losses you may incur. For more information, see our Terms of Use, Risk Warning and Binance Academy Terms.