Key Takeaways
- Over $7.5 million was siphoned from MEV bot Jaredfromsubway.eth during a weekend exploit
- The perpetrator created 66 counterfeit token contracts across multiple weeks as part of an elaborate setup
- The automated bot was deceived into granting spending permissions to malicious contracts
- Blockaid, a blockchain security company, characterized it as a “counter-MEV honeypot attack”
- Portions of the pilfered cryptocurrency have been laundered through Tornado Cash
A prominent cryptocurrency automation tool has become the victim of its own strategy. Jaredfromsubway.eth, a bot that generated substantial profits by front-running regular traders, lost in excess of $7.5 million during a Saturday exploitation event.
Blockaid, a specialized blockchain security company, verified the incident.
The Mechanics Behind the Exploitation
The malicious actor invested several weeks constructing an intricate trap. A total of 66 fraudulent token contracts were created, mimicking legitimate assets including Wrapped ETH, USDC, and USDT. These counterfeit tokens were combined with deceptive liquidity pools engineered to appear as lucrative trading opportunities.
The automated system performed precisely as programmed. It identified what seemed to be a favorable arbitrage opportunity and granted authorization for specific contracts to access its treasury.
This authorization proved catastrophic. Through a single blockchain transaction, all 66 concealed backdoors activated simultaneously, extracting the bot’s entire holdings across ETH, USDC, and USDT.
“The irony is that through its standard operations, it handed over the access credentials to millions stored in the bot’s wallet,” explained Raz Niv, Chief Technology Officer at Blockaid.
Blockaid emphasized this incident differed from conventional exploits. “This isn’t a typical phishing scheme nor a conventional smart-contract security flaw,” the company stated. The attack specifically exploited the automated decision-making algorithms that power MEV bot operations.
Understanding Jaredfromsubway.eth
Maximal Extractable Value (MEV) bots scan pending blockchain transactions and reorder their execution sequence to generate profits. Critics often describe this practice as an “invisible fee” imposed on regular network participants.
Sandwich attacks represent a prevalent MEV tactic. These bots identify incoming trades, insert their own transactions immediately before and after the target trade, then capture profit from the resulting price fluctuation.
From November 2024 through October 2025, Jaredfromsubway.eth executed approximately 70% of all sandwich attacks across the Ethereum network. Research from Cointelegraph indicates sandwich attacks drain roughly $60 million annually from traders, with attack frequencies ranging between 60,000 and 90,000 incidents monthly during high-activity periods.
Last May, Ethereum creator Vitalik Buterin experienced a sandwich attack from this identical bot during a modest DigitalBits token swap. While the monetary impact was negligible, the incident demonstrated that transaction size provides no immunity from targeting.
Blockchain analytics reveal that portions of the stolen cryptocurrency have already been transferred to Tornado Cash, a platform designed to obscure transaction origins.
Community responses have been divided. Cryptocurrency investor David Gokhshtein commented: “We shouldn’t be happy about this; no one should celebrate… but if you’ve ever been sandwiched by this… I’m pretty sure you’re not upset about this news.”
This exploitation represents among the most substantial individual losses documented for an MEV bot operation.
Get 3 Free Stock Ebooks
Discover top-performing stocks in AI, Crypto, and Technology with expert analysis.
- Top 10 AI Stocks - Leading AI companies
- Top 10 Crypto Stocks - Blockchain leaders
- Top 10 Tech Stocks - Tech giants
