Última hora
RUЭкс-советник Кучмы: Зеленский зря просил ракеты у ОБСЕARالنرويج تكتب التاريخ وتطيح بالبرازيل في كأس العالم 2026JP大坂なおみが準々決勝へ 日本女子3人目、サバレンカ破る―ウィンブルドンテニスJPエンゼルス・スーター、化石燃料スポンサーに異議 "クリーンな企業を支援したい"JPサッカーW杯、スポンサー「サウジアラムコ」に批判の声 - 温室効果ガス排出企業ARالمدرب البرتغالي برونو لاج يصل الرياض لتوقيع عقد تدريب نادي الدرعيةITMessico-Inghilterra: Folla record a Città del Messico, accessi chiusiITMessico-Inghilterra: Fan Fest Zócalo e Ángel de la Independencia al completoFRLe Brésil éliminé de la Coupe du Monde par la NorvègeCN《玩具總動員5》全球票房突破7.64億美元,日本創歷史紀錄RUЭкс-советник Кучмы: Зеленский зря просил ракеты у ОБСЕARالنرويج تكتب التاريخ وتطيح بالبرازيل في كأس العالم 2026JP大坂なおみが準々決勝へ 日本女子3人目、サバレンカ破る―ウィンブルドンテニスJPエンゼルス・スーター、化石燃料スポンサーに異議 "クリーンな企業を支援したい"JPサッカーW杯、スポンサー「サウジアラムコ」に批判の声 - 温室効果ガス排出企業ARالمدرب البرتغالي برونو لاج يصل الرياض لتوقيع عقد تدريب نادي الدرعيةITMessico-Inghilterra: Folla record a Città del Messico, accessi chiusiITMessico-Inghilterra: Fan Fest Zócalo e Ángel de la Independencia al completoFRLe Brésil éliminé de la Coupe du Monde par la NorvègeCN《玩具總動員5》全球票房突破7.64億美元,日本創歷史紀錄
Newsgather
BackJaredfromsubway Trading Bot Suffers $7.5 Million Exploit
Jaredfromsubway Trading Bot Suffers $7.5 Million Exploit
En desarrollo
Decrypt22.06.2026Business2 dk okuma

Jaredfromsubway Trading Bot Suffers $7.5 Million Exploit

En resumen

  • The popular trading bot Jaredfromsubway was exploited for $7.5 million in a sophisticated attack involving fake tokens and fraudulent smart contracts.
  • The bot's logic was exposed, allowing an attacker to drain funds.
  • The operator offered a bounty for the return of stolen assets.

Resumen generado por IA

Por qué importa

A well-known trading bot named Jaredfromsubway, known for sandwich attacks, was exploited for $7.5 million due to fake tokens and fraudulent smart contracts. The operator offered a bounty for the return of funds.

Tamaño de fuente

In brief

Jaredfromsubway, a well-known trading bot, fell victim to a series of transactions that left its logic exposed to malicious behavior.

The trading bot has developed a reputation for so-called sandwich attacks, but it was abused by fake tokens and fraudulent smart contracts.

Jaredfromsubway’s operator offered the attacker a bounty, yet a portion of the stolen funds had been transferred to Tornado Cash.

A well-known trading bot took a notable hit this weekend after it fell victim to a series of transactions that left its logic exposed to malicious behavior.

The $7.5 million attack, which took place on Saturday, marked a sudden setback for “jaredfromsubway” and the formula it has used to quietly notch profits on Ethereum for years.

The trading bot has been credited with perfecting the so-called sandwich attack. The strategy is widely viewed as a form of market manipulation on decentralized exchanges, involving trades that are placed around pending transactions and hurt price execution.

Essentially, an attacker presented jaredfromsubway with misleading opportunities that later allowed the bad actor to drain legitimate funds, according to security firm Blockaid. The scheme boiled down to fake tokens and fraudulent smart contracts, Blockaid added in an X post.

Jaredfromsubway is designed to continuously scan for profitable trades, and in order to act on them, it occasionally needs to provide entities with permission to move funds on its behalf.

Some transactions that jaredfromsubway engaged in revoked those powers as soon as they were completed, while the ones that were crafted later by the attacker didn’t. “That left attacker-controlled spenders armed,” Blockaid explained.

Although the crypto industry has developed several services to prevent sandwich attacks, entities like jaredfromsubway are viewed, in some ways, as unavoidable. However, Saturday’s attack showed that the trading bot’s logic is far from infallible.

The trading bot’s operator appeared to recognize this. In an on-chain message, they offered a “50% white hat bounty” for the return of 2,150 Ethereum, currently valued at roughly $3.7 million, within the next 48 hours. Otherwise, the individual behind the bot threatened to pursue legal remedies and involve law enforcement.

“Finally, someone punished the infamous sandwich attacker,” an onlooker remarked on X. “People don't die without experiencing what they've inflicted on others.”

Sandwich attacks fall under the umbrella of Maximal Extractable Value (MEV). Coined in 2019, the term refers to validators and other participants who are able to generate profits by reordering transactions before they are finalized.

Following the exploit on Saturday, the attacker appeared to begin covering their tracks.

Preguntas abiertas

  • Will the attacker be apprehended?
  • What legal actions will be taken?
  • How will this impact future MEV strategies?

Temas relacionados

This article was originally published by Decrypt.

Noticias relacionadas

Más sobre este temajaredfromsubway