The notorious 51-percent attack: itâs the major fault in cryptocurrency protocols but itâs rarely seen, especially among the most popular cryptocurrencies.
Yet, in the past couple months, the exploit â whereby a single miner (or group of miners) takes control of over half of the networkâs total computing power and can then bend the protocolâs rules in their favor â has been seen twice. And on the same blockchain.
Indeed, verge, a privacy-oriented cryptocurrency recently propelled into the limelight by a partnership with popular adult entertainment site Pornhub, suffered two hacks perpetrated through 51-percent attacks that saw the attackers absconding with millions of dollars-worth of its native cryptocurrency, XVG.
During the first attack in April (only a couple of weeks before the Pornhub partnership), the hacker was able to get away with 250,000 XVG. And during the latest in mid-May, an attacker was able to exploit $1.7 million-worth of the cryptocurrency from the protocol.
According to researchers, the exploits are a product of simple changes to the underlying code which cryptocurrency protocols are typically built on and the challenges of being able to predict what unintended consequences will arise from those changes.
Sure, verge developers were only trying to design a better cryptocurrency for payments, but by tweaking small parameters, such as the length of time a block can be valid, the group has opened its blockchain up to attacks.
âGetting incentives right and keeping them right is hard,â Imperial College London assistant professor and Liquidity Network founder Arthur Gervais said.
That is blockchains are built on very precariously stacked incentives whereby all stakeholders work together toward a common goal so as to remove the chance that one entity takes full control.
âThings obviously donât look good,â said Daniel Goldman, the CTO of cryptocurrency analysis site The Abacus whoâs been tracking the attacks. âThe issues that initially slipped into the codebase were a result of pure carelessness â incorporating code from other open-source software without understanding its implications.â
Goldman added:
âI hate to say it, but if I had to summarize: the attacker is doing better due diligence than the developers. Iâd try to poach him if I were them.â
And since veteran blockchain developers, including litecoin creator Charlie Lee and monero lead developer Riccardo Spagni, have long argued the kinds of adjustments the platform made have obvious downsides, such naysayers â who have been readily attacked by a group of enthusiasts calling themselves the âVerge Armyâ â are feeling vindicated.
âSo many important lessons to be learned from this,â Fidelity investment research analyst Nic Carter tweeted, summing up the general state of vergeâs development.
Representatives from the verge developer team did not respond to a request for comment from CoinDesk.
One of those lessons is that there are reasons why the window of time that a transaction can be valid is limited quite strictly.
For instance, whereas bitcoin transactions are only valid for about 10 minutes before theyâre verified in a block, verge developers extended that window to two hours. And because there is some information asymmetry in blockchain systems since nodes are spread out across the globe, the attacker was able âspoofâ timestamps tied to blocks without some noticing, according to the widely-circulated post by Goldman.
But it wasnât just that; another piece of the attacks was vergeâs difficulty algorithm.
Verge uses the algorithm âDark Gravity Waveâ to automatically adjust how fast miners find blocks. In verge, this happens every two hours; compared to bitcoin which adjusts every two weeks, vergeâs algorithm is quite fast.
The spoofed timestamps paired with this fast-adjusting algorithm led to the problem of âtragically confusing the protocolâs mining adjustment algorithm,â as Goldman put it.
Or said another way, the attacker cleverly mined blocks with fake timestamps, forcing the cryptocurrencyâs difficulty to adjust down more quickly â making it easier for the attacker to mine even more XVG.
When the first attack happened, verge developers quickly released a patch, stopping the attacker from printing more money. Yet, with the attack last month, it seems the patch only went so far and the attacker found another way to execute the same hack, displaying how difficult it can be to architect a distributed system that isnât vulnerable to attacks.
And according to Goldman, the issues for verge are likely not over.
âAn attack clearly was â and maybe still is â being attempted. So far, however, the would-be attacker hasnât managed to overtake the network,â Goldman told CoinDesk.
But he continued:
âAs it stands now, two of the three (in my opinion) fundamental sources of vulnerabilities have been mitigated at best, and one remains completely unfixed.â
While no XVG were stolen directly from users, miners on the network arenât supposed to be able to bend the rules like this, effectively printing money for one individual in a short period of time.
As such, verge developers are actively working on improving the code. After a period of little communication from vergeâs developers, CryptoRekt, the pseudonymous author of the verge âblackpaperâ took to Reddit on May 31, saying, that all of the verge team would ânever intentionally do anything to besmirch or hurt this project.â
He added that the projectâs developer have been working on new code for âseveral weeksâ to âsolidify our currency against any future attacks.â
Yet, Goldman believes thereâs another problem. Unlike many of the cryptocurrency projects out there today, which rely on open-source code, vergeâs codebase is being constructed in private and so will not get peer-reviewed by the community of blockchain experts that could help the team find vulnerabilities.
âSince incorporating code without responsibly vetting it was the thing that led to all this, this should make the vergefam nervous,â he tweeted.
But so far, much of the verge community remains supportive of the developer team and the cryptocurrencyâs mission.
Pseudonymous verge user Crypto Dog went as far as to claim that âthere is no need to panic,â contending that vergeâs success will continue no matter what. And CryptoRekt chose to see it as a learning experience, one that would help verge âbuild a bigger and better project.â
Still, this attack looks poorly, not only on verge itself, but also on organizations that have partnered with the verge team, Pornhub included. Especially since Pornhubâs vice president Corey Price stated verge was chosen as a payment method for the site in a âvery deliberate selection processâ to preserve the financial privacy of their customers.
As such, some developers believe this episode will bring about a heightened sense of responsibility for many organizations to more effectively analyze a blockchain before adopting it.
âI wouldnât be surprised by more scrutiny in the near future, both leading to more attacks and to investors more accurately rating the value proposition of smaller altcoin projects,â BitGo engineer Mark Erhardt said, adding:
âThe absence of an attack is not proof that a system is safe. Quite a few altcoin projects appear to be taking unsafe shortcuts. Itâs just that nobody has bothered to exploit these systemic flaws or weaknesses, yet.â
As such, verge might be the first in a long line of future exploits.
While 51-percent attacks have typically been viewed as hard to execute, Liquidity Networkâs Gervais argued that new data appears to show that itâs easier than many previously thought. He pointed to a new web app, 51crypto, which tracks how profitable it is to execute a 51-percent attack on various blockchains.
The gist of the statistics is, the smaller the blockchain, the easier it is to overtake it and bend the rules, which is why developers need to be particularly careful in how they architect their systems.
Because âif an attack makes more economic sense over honest behavior, the attackers will be there,â Gervais concluded.
Verge image via Shutterstock
