The largest Ethereum MEV bot lost $7.5 million in a sophisticated trust attack.

The famous MEV bot Jaredfromsubway.eth, which dominated the field of sandwich attacks on Ethereum, was exploited, losing assets worth over $7.5 million. The incident was detected by the Blockaid exploit detection system, which revealed the attack mechanism. This is not an ordinary theft, but a carefully planned operation targeting vulnerabilities in the logic of automated system interactions.
According to the analysis, the attacker did not directly hack the victim's smart contracts, but applied a method of social engineering at the code level. Numerous fake token contracts were deployed, disguised as WETH, USDC, and USDT, along with the creation of fake liquidity pools. These constructs mimicked high-yield trading opportunities that MEV bots typically respond to in order to execute sandwich attacks.
The deceived bot granted the attacker's auxiliary contracts permission to spend real assets. Then, in a single transaction, the attacker activated all backdoors and withdrew the funds. Part of the stolen coins has already been moved through the Tornado Cash mixer, as confirmed by data from the Arkham platform.
Blockaid experts emphasize that this is neither a classic phishing attack nor a traditional smart contract vulnerability in the victim's contract. The attack was specifically aimed at the bot's automated execution system, which failed to distinguish genuine assets from fake ones.
It is worth noting that Jaredfromsubway.eth was one of the most active participants in the MEV market. Estimates suggest that annual trader losses from sandwich attacks on Ethereum amount to about $60 million, with approximately 70% of such operations linked to this bot from November 2024 to October 2025. In June 2024, it even became the largest gas consumer on the Ethereum network.
Analyst's comment: This case is a clear example of how the complexity and automation of MEV strategies create new attack vectors. Bots that hunt for profit become victims themselves when their algorithms fail to adequately assess the authenticity of liquidity. The MEV market is entering a phase where security and data verification are becoming as important as transaction execution speed.