Infamous MEV Bot JaredFromSubway Drained For $7.5 Million

bitcoinistPublished on 2026-06-22Last updated on 2026-06-22

Abstract

The notorious Ethereum MEV bot "JaredFromSubway" has been drained of approximately $7.5 million after attackers tricked its automated system. Security firm Blockaid reported that the bot was deceived into approving malicious trading routes by attacker-controlled contracts. These approvals were then used to siphon WETH, USDC, and USDT from the bot's contract. The incident is ironic as MEV bots are designed to exploit minute market advantages, but in this case, its own automation became the vulnerability. The attack specifically targeted the bot's trading logic, not the Ethereum protocol or a broader DeFi application. It underscores a critical risk in automated trading: the pursuit of speed can create fragility, making systems susceptible to carefully crafted traps. While the financial loss is significant, the broader impact is reputational for MEV infrastructure. It serves as a warning that automated systems granting token approvals require stringent safeguards, simulation, and route verification. The event is considered a targeted exploit on a trading bot, not a network-wide security issue.

One of Ethereum’s most notorious MEV bots, known as JaredFromSubway, has reportedly been drained for around $7.5 million after attacker-controlled contracts tricked its automated system into granting token approvals.

TL;DR

  • The JaredFromSubway MEV bot was reportedly drained for about $7.5 million.
  • Security firm Blockaid said the bot was tricked into approving malicious trading routes.
  • The attacker then used those approvals to pull assets from the bot contract.
  • The incident appears to target the bot’s own automation, not Ethereum itself.

CoinDesk reported that Blockaid identified the exploit, saying attacker-controlled contracts tricked the bot into approving fake trading routes. Those approvals were later used to drain WETH, USDC and USDT from the bot’s contract. The incident has drawn attention because JaredFromSubway has long been associated with aggressive sandwich trading on Ethereum.

The irony is hard to miss. MEV bots are built to exploit tiny timing and routing advantages in on-chain markets. In this case, the bot’s own automation appears to have become the weakness. Instead of extracting value from other users, it was manipulated into approving contracts that later drained its balances.

What Happened

The reported exploit was not a hack of Ethereum’s base protocol. It was also not a broad failure of a major DeFi application used by ordinary depositors. The target was a specific MEV bot and the logic it used to interact with contracts during automated trading.

That distinction matters. MEV infrastructure moves quickly and often relies on highly automated decision-making. If that automation can be tricked into approving the wrong contract, the risk can be severe because transactions execute with little human review.

According to reports, the attacker prepared the trap by using fake routes or contracts that the bot interpreted as profitable opportunities. Once approvals were granted, the attacker used them to transfer assets out. In DeFi terms, it was a reminder that approvals are powerful permissions, not harmless signatures.

Why Traders Care

The story is bigger than one bot getting drained. It highlights a risk that applies across automated trading systems: speed can become fragility. Bots competing in MEV markets need to act faster than human traders, but that also means they can be vulnerable to carefully designed traps.

For Ethereum users, the incident may feel like poetic justice because sandwich bots are widely disliked. But the technical lesson is broader. Any system that grants token approvals based on automated contract interactions needs strict safeguards, simulation and route verification.

The market impact is unlikely to come from the dollar amount alone. A $7.5 million drain is meaningful, but not systemic. The bigger impact is reputational for MEV infrastructure and possibly operational for bot operators who now need to review their approval logic more aggressively.

For now, this should be treated as a targeted exploit against a trading bot, not a network-wide security event.

This report is based on information from Blockaid.

This article was written by the News Desk and edited by Samuel Rae.

Trending Cryptos

Related Questions

QWhat is the name of the infamous MEV bot that was drained of $7.5 million?

AThe name of the bot is JaredFromSubway.

QWhat security firm identified the exploit against the JaredFromSubway bot?

AThe security firm that identified the exploit is Blockaid.

QHow was the JaredFromSubway bot tricked into allowing its assets to be drained?

AThe bot was tricked by attacker-controlled contracts into approving fake trading routes. These approvals were then used to drain its assets.

QWhat types of assets were drained from the MEV bot's contract?

AThe assets drained from the bot's contract were WETH, USDC, and USDT.

QWhat is the core vulnerability or weakness that this exploit highlighted for automated trading systems like MEV bots?

AThe exploit highlighted that the automation and speed required for MEV trading can become a fragility, making bots vulnerable to carefully designed traps that trick their automated approval logic.

Related Reads

Primit Season 1 Officially Launches: $100,000 Avalanche On-Chain Perp Trading Incentive Event Now Live

Primit, in collaboration with Avalanche, has officially launched "Season 1: On-Chain Perp Frenzy," a large-scale incentive event for on-chain perpetual trading on the Avalanche network. The campaign features a total prize pool equivalent to 100,000 USDT in AVAX, distributed across four concurrent reward mechanisms. Key components of the event include: * **Daily Random User Rewards ($7,000 pool):** Over 14 days, 20 users daily with at least $200 in trading volume are randomly selected to share a $500 daily pool. * **Twitter Contributor Rewards ($5,200 pool):** Rewards of $300–$500 for high-quality community content about Primit on Twitter/X using #PrimitAvalanche. * **Referral Rebate Mechanism ($50,000 pool):** A proportional share of the pool is distributed based on valid referral volume, with no individual cap. Referred users must register via a code and achieve ≥$500 cumulative volume with ≥5 trades. * **Volume Leaderboard ($37,800 pool):** Top 120 traders by cumulative volume receive rewards ranging from $100 to $4,000. The event runs from July 15 to July 28. Trading volume from AVAX-related pairs or using native gas receives a 1.5x multiplier, incentivizing engagement with Avalanche's core ecosystem. According to the Primit team, the season serves as a product stress test to demonstrate the readiness of on-chain perpetuals for high-frequency, professional trading demand, facilitated by Avalanche's high-performance infrastructure. Relevant links to the official Twitter and event portal are provided.

TheNewsCrypto1h ago

Primit Season 1 Officially Launches: $100,000 Avalanche On-Chain Perp Trading Incentive Event Now Live

TheNewsCrypto1h ago

Trading

Spot

Hot Articles

Discussions

Welcome to the HTX Community. Here, you can stay informed about the latest platform developments and gain access to professional market insights. Users' opinions on the price of ETH (ETH) are presented below.

活动图片