Litecoin Network Suffers Denial-of-Service Attack and 13-Block Rewind

On Friday and Saturday, the Litecoin network underwent a significant reorganization of 13 blocks to counteract the effects of a denial-of-service attack. This attack, leveraging a vulnerability in the Mimblewimble Extension Block (MWEB) protocol, managed to introduce invalid transactions into the network. The vulnerability was exploited despite a patch being available, highlighting a window of vulnerability between when the patch was privately applied and when it was publicly released and adopted by all nodes. The Litecoin Core v0.21.5.4 update, which includes security patches, was subsequently released, with users advised to upgrade for protection. The attack and the network's response have sparked discussions about the handling of vulnerabilities and the upgrade processes in proof-of-work networks like Litecoin, contrasting with newer, more centralized blockchain models.