Next update I'll credit you, thanks for the memory!

I'm not sure, I feel like ToR DoS is a LN Node adjacent concern, especially among first-time noderunners and very small (or privacy concerned) operations that are ToR-only.

One of my ideas, was to retain this file as an "executive summary" and then a separate document for each failure event, and a deep dive into the technical aspects so if a reader wants an in-depth historical post mortem on a specific event, they can read up on just that event. What do you think?

OK, could you refresh and check the paper now? I added a section in the examples with a fairly lengthy summary of the MoE event. I'm definitely willing to add citations or if you have a TG/Twitter handle (or this one on Stacker?) that you'd like credited!

That's a great suggestion, thanks! I think you're referring to the "Medium of Exchange" social engineering attack on Vultr? I should totally include that! Unfortunately now that I'm checking, the website is down. I found the recap on the Wayback Machine, and will include it in my paper, thanks for the suggestion!

Do you have other examples I should include that you're aware of?