DDoS targets in the Bitcoin ecosystem

Posted on February 27, 2014 - 16:26 by ccondon

StopBadware focuses on Web-based malware, but one of our strengths is that we work with a diverse community of security experts whose areas of expertise often extend beyond our own. Our friends and research contacts at SMU are presenting a paper at Financial Cryptography 2014's Bitcoin research workshop in Barbados next week; they'll be discussing empirical analysis of denial-of-service attacks in the Bitcoin ecosystem. 

They've made some interesting findings on changes in Bitcoin DDoS targets over time: "We find that 7% of all known operators have been DDoSed, but that currency exchanges, mining pools, gambling operators, eWallets, and financial services are much more likely to be attacked than other services." Currency exchanges and mining pools are also "much more likely to have DDoS protection such as CloudFlare, Incapsula, or Amazon Cloud." (Full paper here.)

Bitcoin DDoS targets over time

Research courtesy of Southern Methodist University's Marie Vasek (who doubles as StopBadware's operations technologist), Micah Thornton, and Dr. Tyler Moore. If you're attending FC '14, be sure to check out their talk next week!