What is a 51% Attack?
A 51% attack is a scenario where one entity controls more than half of a proof-of-work network's total mining power. With that majority, the attacker can reverse their own past transactions, double-spend coins, and block other users from getting confirmations. Also called a majority attack.
The mechanic comes from how proof-of-work reaches consensus. The chain with the most accumulated work wins. Under normal conditions, no single miner or pool has enough hash rate to outrun the rest of the network. But cross 50% and you can consistently produce blocks faster than everyone else combined, dictating which version of the blockchain the network treats as canonical.
Understand what a 51% attack cannot do. It cannot create new coins beyond the protocol limit. It cannot steal bitcoin from wallets the attacker doesn't hold keys to. It cannot change Bitcoin's core rules, like the 21 million cap or the halving schedule. The attack manipulates transaction ordering and confirmation. That's it.
Why It Matters
The 51% attack is the primary theoretical vulnerability of proof-of-work. Critics point to it whenever they question Bitcoin's security. Understanding it matters for grasping both the strengths and the limits of decentralized consensus.
For Bitcoin specifically, a successful attack is extraordinarily unlikely. The hash rate has grown exponentially since 2009. The network is now secured by millions of ASIC mining machines spread across dozens of countries. Acquiring enough hardware to control 51% would run into the billions, and that's before the electricity bill. A nation-state could try. They'd have an enormous logistical fight on their hands.
No successful 51% attack has ever hit Bitcoin. Smaller proof-of-work chains have been less fortunate. Ethereum Classic. Bitcoin Gold. Verge. All have suffered 51% attacks where attackers double-spent coins on exchanges. The principle holds: a proof-of-work network is only as secure as its hash rate, and Bitcoin's dominant share of global mining power is one of its core security advantages.
How It Works
The attack follows a specific sequence. The attacker sends bitcoin to a victim, usually an exchange. They wait for enough confirmations that the recipient considers it final and releases goods, services, or other currency in return.
Meanwhile, the attacker is secretly mining an alternative version of the blockchain. One that excludes the transaction they just made. Because they control more than half the hash rate, they can mine blocks on this private chain faster than the rest of the network mines on the public chain. Once their private chain is longer than the public one, they broadcast it.
Under Bitcoin's consensus rules, nodes accept the chain with the most proof of work. The attacker's longer chain wins. Nodes drop the public chain and adopt the attacker's version. The original transaction disappears from the record. The attacker keeps the bitcoin and whatever they received in exchange. Double-spend complete.
The attacker could also censor transactions by refusing to include specific ones in the blocks they mine. Since they produce blocks faster than anyone else, censored transactions stay unconfirmed for as long as the attacker holds majority control.
But the economics push back. A successful 51% attack on Bitcoin would crash the price, since it would destroy confidence in the network's security. The attacker, by definition holding billions of dollars in Bitcoin-only mining hardware plus their own bitcoin stash, would watch the value of everything they own collapse. The very act of attacking destroys the value the attacker wanted to capture. This self-defeating loop is sometimes called the "attacker's dilemma," and it's one of the most elegant aspects of Bitcoin's security model because no rule book enforces it; the math of incentives does.
And if all else fails, the community could respond by changing the proof-of-work algorithm. That would render the attacker's hardware worthless overnight. Nuclear option. Never needed. Its existence is its own deterrent.