Time Attack
"Many Proof-of-stake designs assume validator clocks are roughly synchronized. Often the clock sync property is taken for granted, but, in reality, clocks should be synchronized with some protocol. Thus, such clock sync protocol becomes a target for an attacker.
Particularly, in beacon chain protocol, if a validator’s clock disparity is more than one epoch, then its attestations won’t be included in a chain by correct processes. Due to inactivity lick, the validator will be penalized for not participating in the protocol.
Time attack is attractive because its cost can be much lower than the cost of validator deposits.
Assuming, there are 300K validators and 10K nodes, there are 30 validator per node on average. To perform 51% attack directly, an attacker should own 150K validators, which would cost 4.8M ETH (about $1.3B at the time of writing).
However, if many validating nodes use NTP with insecure setups, they can be attacked with much lower cost (see, for example, one, two, three)."