BRC20 Pinning Attack
Minfeng Qi, Qin Wang, Zhipeng Wang, Lin Zhong, Zhixiong Gao, Tianqing Zhu, Shiping Chen, William Knottenbelt
TL;DR
This paper uncovers a new security vulnerability in BRC20 token transfers on Bitcoin, demonstrating how an attacker can disrupt liquidity and withdrawals by manipulating transaction fees, with real-world testing on Binance.
Contribution
It provides the first analysis of BRC20 transfer mechanisms and introduces the BRC20 pinning attack, revealing a significant security flaw in the system.
Findings
The attack can lock liquidity and disrupt withdrawals for BRC20 tokens.
Real-world testing on Binance confirmed the attack's effectiveness.
Over 90% of inscription-based tokens are vulnerable to this attack.
Abstract
BRC20 tokens are a type of non-fungible asset on the Bitcoin network. They allow users to embed customised content within Bitcoin's satoshis. The token frenzy reached a market size of US$2.811\,b (2023Q3--2025Q1). However, this intuitive design has not undergone serious security scrutiny. We present the first analysis of BRC20's \emph{transfer} mechanism and identify a new attack vector. A typical BRC20 transfer involves two "bundled" on-chain transactions with different fee levels: the first (i.e., \textbf{Tx1}) with a lower fee inscribes the \textsf{transfer} request, while the second (i.e., \textbf{Tx2}) with a higher fee finalizes the actual transfer. An adversary can send a manipulated fee transaction (falling between the two fee levels), which causes \textbf{Tx1} to be processed while \textbf{Tx2} is pinned in the mempool. This locks BRC20 liquidity and disrupts normal…
Peer Reviews
No public reviews on file for this paper yet. If you reviewed it on a platform where reviews are public (OpenReview, ICLR, NeurIPS, ICML), you can paste yours below so the community can read it here.
Videos
No videos yet. Explain this paper in a talk, walkthrough, or lecture? Add one.
Taxonomy
TopicsSignaling Pathways in Disease · Peptidase Inhibition and Analysis · Melanoma and MAPK Pathways