MEV bot Jaredfromsubway.eth lost $7.5 million: a lesson in trust for automated systems

A well-known Ethereum MEV bot operated by Jaredfromsubway.eth lost over $7.5 million in a sophisticated attack. The incident occurred not due to a classic smart contract vulnerability or phishing, but due to manipulation of the automated system's own operational logic.
How It Happened
Experts at Blockaid, a company specializing in exploit detection, determined that the attacker deployed dozens of fake token contracts disguised as WETH, USDC, and USDT. These contracts were linked to fictitious liquidity pools that appeared as profitable trades — precisely the targets MEV bots typically respond to for sandwich attacks.
Jaredfromsubway.eth's system, failing to detect the deception, granted the attacker's auxiliary contracts permissions to spend real assets. The attacker then activated all backdoors in a single transaction and withdrew the funds. Part of the stolen coins has already been sent to the Tornado Cash mixer, as confirmed by data from the analytics platform Arkham.
Scale of the Threat
According to estimates, annual trader losses in Ethereum from sandwich attacks amount to approximately $60 million. From November 2024 to October 2025, the network recorded between 60,000 and 90,000 such operations per month, with about 70% of them linked to Jaredfromsubway.eth. This bot is also known for becoming the largest gas consumer on the Ethereum network in June 2024.
Expert Commentary: This case is a stark reminder that even the most advanced MEV bots are vulnerable to attacks at the level of data trust. Attackers are increasingly exploiting not technical vulnerabilities, but the manipulation of decision-making logic. For the industry, this is a signal: automated systems must be trained to recognize not only profit but also suspicious patterns.