Loading prices…
Zipp Zipp Advertise
Sign up Sign in
🩸BEARISH CryptoSlate

Jaredfromsubway MEV Bot Drained for $7.5M in Single Transaction

The same bot that once consumed 7% of Ethereum gas in a single day lost its working capital to an attacker who exploited a careless token approval — a reminder that MEV profit is one phishing-style…

The Jaredfromsubway Ethereum MEV bot — at one point responsible for roughly 7% of total network gas in a 24-hour window — has been drained of about $7.5 million in a single transaction. Ultrasound.money data showed the bot's sandwich-attack activity had been a persistent driver of base-fee pressure across mainnet.

Why it matters

The attacker appears to have walked off with the funds by exploiting an ERC-20 approval the bot had granted, not by outsmarting its search logic. MEV bots routinely approve routers and aggregators to pull whatever tokens they profitably extract; when an attacker can route through an approved contract they control, the bot's working capital is just a click away from the drain.

The incident lands as a textbook case of operational-security failure at the smart-contract layer — the kind of human-side mistake that no amount of searcher sophistication can offset.

Market impact

For Ethereum, the immediate read is gas-fee relief: removing one of the loudest gas consumers on mainnet should mechanically trim base fees, though the network has no shortage of competing searchers willing to fill the slot. The broader read is a reputational one for the MEV ecosystem — sandwich bots already sit at the uncomfortable edge of what retail users consider fair, and watching the most active one get rugged by a careless approval sharpens the case that the profit pool is small, adversarial, and unforgiving of mistakes.

Related tokens
$ETH
#Ethereum$ETH#MEV#SmartContract

Frequently asked questions

  1. What is the Jaredfromsubway MEV bot?

    An Ethereum searcher bot that ran sandwich attacks on DEX trades. It was at one point responsible for roughly 7% of total network gas consumption in a 24-hour window, per ultrasound.money data.

  2. How was the bot drained for $7.5M?

    The attacker exploited an ERC-20 token approval the bot had previously granted, routing the theft through a contract the attacker controlled rather than outcompeting the bot's own search logic.

  3. What are sandwich attacks in MEV?

    A searcher watches the mempool for pending trades, front-runs with a buy, lets the victim's trade execute at a worse price, then back-runs with a sell — profiting from the price impact of the victim's order.

  4. What does this mean for Ethereum gas fees?

    Removing one of the loudest gas consumers on mainnet should mechanically ease base-fee pressure, though competing searchers typically fill the slot quickly.

  5. Is this an exploit of the Ethereum protocol?

    No. The loss came from an operational-security mistake at the smart-contract layer — a permissive token approval — not from a flaw in Ethereum's consensus or execution rules.

Source attribution
Aggregated from CryptoSlate · Verified · Last refreshed 1h ago
Open original →

More from Security

Stories our editors think pair well with this one.

Older in Security

Catch up on earlier coverage from this beat.