> Guides > Race Attack Explained: How Transaction…

Race Attack Explained: How Transaction Races Work

By Ethan Clarke Updated On May 18, 2026

Worried that a payment you just received on-chain could be reversed? This explainer breaks down what a race attack is, why it can undo unconfirmed transactions, and practical steps traders and merchants can take to reduce exposure.

Race Attack Definition

A race attack is a form of double-spend where an attacker broadcasts two conflicting transactions that spend the same funds and races to have one of them confirmed in a block. Typically one transaction is sent to a payee to finalize a purchase while a competing transaction with a higher effective incentive to miners is propagated to the network to be confirmed instead.

How Race Attacks Work

At the core a race attack exploits the lag between when a transaction is broadcast and when it is confirmed in a block. The attacker creates two transactions that use the same inputs. One transaction is directed to the victim — for example a merchant who accepts zero-confirmation payments — and the other is a conflicting transaction sent elsewhere, usually back to the attacker or to an address they control.

The competing transaction typically arrives with a higher miner incentive so miners prefer to include it in a block. If the higher-fee or better-propagated transaction is mined first, the payee’s version becomes invalid and the attacker keeps both the goods and their coins.

Race attacks rely on mempool propagation and miner behavior. Techniques that attackers use include broadcasting the double-spend through multiple peers, attaching a larger fee, or leveraging transaction-replacement features such as Replace-by-Fee where supported. Because different nodes may receive transactions in different orders, the attacker depends on miners seeing and preferring the version they want confirmed.

For fundamentals on transaction confirmation and double spending, see material that explains Bitcoin confirmations and the double-spend risk in more detail on Bitcoin.org and in the original protocol description Bitcoin white paper.

Example Use Case

One common real-world scenario involves a merchant accepting zero-confirmation Bitcoin payments for small-value goods to speed checkout. The buyer broadcasts a transaction to the merchant’s node. Immediately, a second transaction spending the same inputs is broadcast by the buyer with a higher fee and routed to miners. If miners include the higher-fee transaction in a block before the merchant’s version is confirmed, the merchant’s received payment becomes invalid even though they displayed a successful payment at checkout.

Another variant occurs when a seller waits for a single confirmation but the attacker times a competing transaction to be included in the block that confirms the payment, or targets propagation to miners that might build the next block. Exchanges and high-value trades generally require multiple confirmations to avoid these risks.

Race Attack Versus Other Double-Spend Techniques

Race attacks are one subset of double-spend strategies. Other named variants include the Finney attack, which depends on a miner pre-mining a block containing a conflicting transaction, and reflection or vector76 attacks that combine network-level manipulation with block propagation tricks. Replace-by-Fee is a protocol-level feature that formally allows replacing a broadcast transaction with a higher-fee version, and the presence or absence of RBF support changes how practical some race attacks are.

Why Race Attacks Matter For Traders And Investors

For traders and investors the main concern is settlement finality. An apparent incoming on-chain transfer that is later invalidated creates settlement risk and can lead to financial loss when counterparties ship goods or release funds prematurely. Traders who accept on-chain deposits with few confirmations are exposed to race attacks and other double-spend vectors.

Risk is greatest in low-confirmation environments, peer-to-peer point-of-sale scenarios, and some decentralized finance flows where off-chain relays or mempool timing affect outcomes. Centralized exchanges typically require multiple confirmations and have monitoring to detect conflicting transactions, which is why institutional trading and custody services emphasize confirmation policies and monitoring for double-spend attempts.

Mitigations used by professional operators include waiting for multiple confirmations, using mempool watchers and heuristics to detect conflicting broadcasts, blacklisting known suspicious peers, and requiring pre-funded settlement through trusted channels for high-value trades.

Practical Defenses Against Race Attacks

  • Require Confirmations: The simplest defense is to require one or more on-chain confirmations before considering a transfer final.
  • Monitor For Conflicts: Run a mempool monitor to detect conflicting transactions and alert if a double-spend candidate appears.
  • Use Trusted Gateways: For fast settlement, use custodial or layer-two rails that provide stronger settlement guarantees than raw zero-confirmation on-chain transfers.
  • Check RBF Flags: Treat transactions marked replaceable as non-final until confirmed in a block.

Conclusion

Race attacks exploit the window between broadcast and confirmation to double-spend by racing two conflicting transactions to miners. The risk is concentrated around zero-confirmation acceptance and weak monitoring; waiting for confirmations and running mempool checks are practical ways to reduce exposure. For traders and merchants, matching confirmation policy to transaction risk is the key operational control.

FAQ

Can a race attack reverse a confirmed transaction?
A properly confirmed transaction included in a block that has sufficient depth is generally final; race attacks target the pre-confirmation window or attempt complex chain reorgs, which are much harder and rarer.

How many confirmations stop a race attack?
More confirmations reduce risk. The number considered safe depends on the network, value at stake, and the likelihood of a miner-orchestrated reorg; high-value transfers typically wait for multiple confirmations.

Do replace-by-fee and RBF make race attacks easier?
RBF explicitly allows replacing a broadcast transaction with a higher-fee version, so transactions marked replaceable should be treated as provisional until mined. RBF changes how wallets and merchants should interpret unconfirmed payments.

Are race attacks common?
They are a known practical risk for zero-confirmation acceptance, but large-scale successful race attacks against well-monitored services are uncommon because operators typically require confirmations and use detection tools.

Is this only a Bitcoin problem?
Race-style double-spends are most commonly discussed in UTXO chains like Bitcoin, but similar timing and ordering risks exist in other networks; the exact mechanics differ by protocol.

Related Terms: double spend, Replace-By-Fee, 0-confirmation, Finney attack, mempool, transaction malleability, front-running

Ethan Clarke

Ethan Clarke

Crypto & Blockchain Expert

Ethan Clarke is a respected cryptocurrency journalist and fintech researcher with over 6 years of experience writing about blockchain technology, digital assets, and decentralized finance. He holds a Bachelor’s degree in Finance and a Postgraduate Diploma in Blockchain Strategy, blending financial expertise with deep technological insight. Ethan specializes in covering major crypto topics, including Bitcoin, Ethereum, DeFi protocols, NFTs, and regulatory developments. He is also known for his thorough and unbiased reviews of crypto-related products such as cryptocurrency brokers, wallets, exchanges, and automated trading platforms. Each review is based on in-depth research, hands-on testing, and performance analysis to help readers make informed decisions.
Read More