VNIS protects Blockchain and Cryptocurrency from DDoS attacks
November 24, 2021

VNIS protects Blockchain and Cryptocurrency from DDoS attacks

Blockchain technology has exploded in recent times due to its "resistance" to DDoS attacks. However, this does not mean that Blockchain technology has completely solved the DDoS attack story in cyberspace. In this article, we want to share how VNIS (VNETWORK Internet Security) fights DDoS and protects today's hot Blockchain exchanges.

The solutions will be mentioned such as hiding the origin server IP through 2 layers of CDN and Cloud WAF, comprehensive security for the origin server with anycast DNS technology. Powerful Cloud infrastructure 200Gbps uplink, 40Gbps uplink switch uplink all servers, and modern SOC system 24/7 monitoring.

Types of DDoS attacks by "floods" of spam transactions

Decentralization of Blockchain networks has led many people to mistakenly believe that DDoS attacks on Blockchain networks are "a story in the dream". But in reality, targeted DDoS attack campaigns can easily degrade the performance of the Blockchain network.

More worryingly, the form of DDoS attack has been developed by hackers with a new way to penetrate the Blockchain trend.

In the Blockchain field, the biggest serious threat that DDoS attacks pose is Transaction Flooding. Nearly all Blockchain networks are built with a fixed capacity because they must generate data blocks of a certain maximum size in predefined intervals of time. Any data that does not match the current blocks on the network will be stored in mempools for consideration for different blocks.

If an attacker floods the Blockchain network by sending a bunch of spam transactions, they will completely fill up the data blocks on the network and push the authenticated transactions from legitimate users to the mempools.

The problem here is that if the validating transactions are not included in the block, they will not be added to the Ledger. To put it more simply, at that moment, the Blockchain cannot do its job and the transaction validation cannot be completed.

The Harmful Consequences of DDoS Attacks Targeting the Blockchain Network

1. Software is "stuck"

Blockchain technology is built in the form of software running on nodes in the Blockchain network with the task of receiving, processing, and storing transactions sent to the system.

But this software always has a limit on the number of transactions it can store in its own mempools or a limit on the amount of memory that can be coordinated by the system.

When the Blockchain network is flooded by a flood of transactions, the software on the system will very easily crash, malfunction, or even crash as soon as the transaction volume exceeds the above limits.

2. Node Error

Blockchain software is built and operated on Blockchain network nodes. This means that each node is responsible for supporting the needs of the software that is running on it in the operations of receiving and processing a large number of spam transactions during a DDoS attack with transaction floods.

In case the node is overloaded, overflowing with memory or CPU, it will immediately malfunction and automatically go offline until it is restarted on the network.

Blockchain networks using Peer-to-peer Network technology. That means, when each transaction is sent to the network, each node will either receive a copy of that transaction or data blocks will forward the copy to each of its neighbors.

And when DDoS attacks take place, the nightmare will come to organizations that operate Blockchain exchanges platforms. A DDoS attack campaign sends batches of spam transactions to the Blockchain network, which are then further replicated into many similar copies on each node. This will be of great help to attack groups, as we seem to be helping hackers ourselves, amplifying the scale and damage of the attack campaign, which is taking place on our own systems.

4. Filling the Ledger

The Ledger (Technical Ledger) of Blockchain is designed with immutability, once transactions have been added to the ledger, they cannot be deleted at all.

In order to be able to verify those transactions later, the nodes also need to store a similar copy of the transaction to the network. This means that once there is a transaction flood, a DDoS attack campaign can have permanent effects on that Blockchain network with the result being a Ledger Technical Ledger filled with unauthenticated spam transactions.

The situation of DDoS attacks targeting Blockchain businesses in practice

DDoS attack campaigns that precisely target organizations in the Blockchain sector are by no means simply a theoretical threat. In the 3rd week of September 2021, two well-known global Blockchain units - Solana and Arbitrum One were repeatedly targeted in a massive and well-organized DDoS attack campaign.

Solana is completely down because of DDoS attack

On September 14, 2021, the Solana Blockchain network was completely down, the unit's system stopped working because of overload for more than 10 hours continuously because of a DDoS attack.

The attack took place shortly after the unit launched a new project of its own on the Blockchain network, the unauthenticated bots created a huge amount of transactions that completely flooded the Blockchain network of this unit.

In the most frightening moment of the attack, the number of transactions spiked to more than 400,000 transactions per second, causing the Forwarded queue on the system to increase rapidly.

Incoming spam transactions took up almost all the resources on the data blocks, reducing the processing speed on the system and making the nodes unable to process computations normally for the duration of the battle. Online transactions on the exchange were completely disconnected and just be restored only 17 hours after the attack.

Arbitrum One Sequencer stopped all activities for nearly 1 hour

Arbitrum One is a layer 2 protocol that runs on the Ethereum Blockchain network. Arbitrum works based on the Sequencer engine with the task of receiving transactions and arranging them in the Inbox - a list of transactions waiting to be included in the Blockchain.

This unit has been through a "brutal" DDoS attack.The attack sent a flood of spam transactions to Arbitrum's Blockchain network and completely overwhelmed the Sequencer engine.Causing this tool to go into an Offline state lasting continuously for an hour.During the attack, the offline Sequencer engine made all transactions inside the validation queue on the network deprecated.

In Arbitrum's built-in protocol, only the Sequencer engine can do the work of validating and transferring transactions without being affected by latency. That is, as soon as the Sequencer goes to the Offline state, the system almost stops all operations and goes into "downtime". All trading activities of investors on the site are completely impossible.

How does VNIS protect Blockchain and Cryptocurrency from DDoS attacks?

For Blockchain exchange organizations, speed and security are the two most important factors. Speed is paramount as exchanges must ensure the ability to update and provide price information of the latest cryptocurrencies for real-time transactions. Meanwhile, security is a top priority. A normal security breach can completely cause the entire system to stop working, leading to all trading activities on the exchange.

If investors cannot access the platform of the Blockchain exchange unit, they will quickly start trading on other exchanges.That is, your exchange will lose these investors as customers along with their trading volume.Worse, the reputation and brand of the exchange unit will be negatively affected, and the above consequences will be even more severe.

At VNETWORK, we have a security solution of VNIS - This is a solution that supports the transmission of digital content at lightning speed and comprehensive security for the cryptocurrency trading system in particular and businesses in the Blockchain industry in general.

VNIS stands out with the following features:

1. AI Load Balancing technology: automatic control and distribution of traffic on distributed front-end servers in the system of electronic trading floor units, automatically redirecting access as soon as it is broadcast from the server on the system that has problems to an available healthy server. Thereby ensuring maximum availability and optimal uptime on the platform of electronic exchange units.

2. Multi CDN: The CDN server system on the VNIS portal works similar to the distributed Front-end servers of Blockchain organizations with the task of being the place to receive the first queries from the users accessing the site. But on VNIS, the leading CDN systems such as Cloudflare, Akamai, VNCDN, ... are connected and managed by us on VNIS portal system - That is Multi CDN.

Multi CDN offers the fastest possible transfer rates on a global scale with the ability to select and activate different CDNs for each specific region.Ensure the operation and operation of electronic exchange units even when an attack on the unit's system is happening with a scale of more than 2600Tbps.

3. Cloud WAF: Advanced security solution with the ability to resist attacks and intrusions into corporate networks. The WAF system thoroughly blocks attacks on site vulnerabilities, targeted DDoS campaigns, Botnets, .. and all other cyber threats.

4. Hide origin server IP: The ability to hide origin server IP through 2 layers of protection, CDN and WAF, ensures maximum security for your server. In addition, we also support full security for the origin server with anycast DNS technology.

Other Blockchain and Cryptocurrency Support Solutions from VNETWORK

In order to address the exponentially increasing demand for the secure transmission of enterprises after the COVID19 pandemic, VNETWORK has continuously developed solutions for transmission and system security with the latest technologies. In order to best serve domestic and foreign partners:

1. Asia's leading CDN technology:

Solution for content transmission and website acceleration using CDN (Content Delivery Network) technology with the ability to receive nearly 3 million simultaneous user visits to the system. Effective browser-supported CDN for WebSockets (an alternative to HTTP communication in Web Applications).

2. VNETWORK Cloud:

The ultimate storage solution for businesses, meet all your large storage needs, and ensure the best system performance with 100% high-speed SSD hard drives. Powerful Cloud infrastructure Uplink 200Gbps, 40Gbps uplink switch uplink all servers.

3. Modern SOC monitoring system operating 24/7:

Deploy and monitor network traffic, logs (systems, applications, ...), user behavior to identify attacks and anomalies in the enterprise's network at the earliest. At the same time, with sophisticated network attacks that cannot be controlled by automated systems, SOC flexibly exerts its power from VNETWORK's 24/7 network security monitoring team.

Need help with our secure service experience? Call hotline: (028) 7306 8789 or email to contact@vnetwork.vn or sales@vnetwork.vn

Related Posts
Website security process against DDoS Attacks in Crypto
Vnetwork|December 03, 2021
Website security process against DDoS Attacks in Crypto

As cryptocurrency prices soar, hackers have turned to Blockchain businesses with massive DDoS attack campaigns.

How to secure WordPress website from hackers
Vnetwork|January 13, 2022
How to secure WordPress website from hackers

WordPress website security is an important topic for every website owner. Google blacklists more than 10,000 websites every day for malware and about 50,000 phishing sites every week. In this article, we will share some of the top WordPress security tips to help you protect your website from hackers

Email Security Gateway - Ứng dụng công nghệ AI vào bảo mật
Vnetwork|January 18, 2022
Email Security Gateway - Ứng dụng công nghệ AI vào bảo mật

Trong khi các cuộc tấn công an ninh mạng ngày càng gia tăng qua nhiều mối đe dọa, email vẫn là kênh phổ biến nhất cho các cuộc tấn công có chủ đích. VNETWORK đã xem xét nhiều mối đe dọa đối với bảo mật email mà các doanh nghiệp phải đối mặt. Email Security Gateway dựa trên công nghệ Trí tuệ nhân tạo

© 2019 VNETWORK JSC. All Rights Reserved

VNETWORK Joint Stock Company

Unit 23.06, 23rd Fl, UOA Tower, 06 Tan Trao St, Tan Phu Ward, Dist 7, Ho Chi Minh City

Enterprise Code: 0312353730 - 03/07/2013

Registration Division: Department of Planning and Investment of HCMC

Powered by VNETWORK