Web3 promised decentralization, transparency, and security, but instead of overcoming Web2's vulnerabilities, it is creating an even more dangerous cyberthreat landscape.
New research shows that blockchain is facing rising threats such as malware, phishing, ransomware, and DDoS attacks that are leaving developers scrambling for solutions.
The study by Post-Quantum security pioneers Naoris Protocol reports that 95% of Web3 developers have seen increased malware attacks, with 11% noting doubled phishing incidents.
At its core, Web3 still relies on Web2 infrastructure, with most Web3 nodes operating on centralized cloud services such as AWS, Google Cloud, or Microsoft Azure. If AWS were to cut off Ethereum tomorrow, the network would face serious disruption.
The Web2 security model—centralized access control—was never designed for Web3’s decentralized nature. This outdated approach clashes with Web3’s reliance on APIs, shared data, and multi-stack technologies. As a result the report found:
- Malware: 72% report increases of 25% or more.
- Phishing: Over one-third say attacks have surged by more than 50%.
- Ransomware: Nearly half of developers report significant increases.
- DDoS: 85% see more frequent and impactful attacks.
The study’s authors suggest Web3 must embrace Decentralized Physical Infrastructure Networks (DePIN).
Unlike traditional cybersecurity, which relies on centralized security perimeters, DePIN distributes data, processing, and security across a trustless, decentralized network. This eliminates single points of failure and significantly enhances cyber resilience.
A Naoris Protocol study found:
- 40% of developers consider DePIN “extremely important” for Web3 security.
- 60% see DePIN as vital for securing decentralized applications and blockchain networks.
“The current physical infrastructure that blockchains use as nodes is not known to be trusted. We can’t measure whether a node has been hacked or is colluding with others. DePIN extends blockchain security principles to devices, creating a dedicated and scalable cybersecurity infrastructure,” said Naoris Protocol’s CEO and founder David Carvalho.
For more information about this news, visit www.naorisprotocol.com.