Jaredfromsubway.eth, Ethereum's Most Active Sandwich Bot, Drained for $7.5M Over the Weekend

An attacker drained more than $7.5 million from jaredfromsubway.eth, the Ethereum address widely considered the single most-active sandwich-attack operator on the network, over the weekend. The loss is a rare public setback for an MEV bot that has run as one of Ethereum's largest priority-fee payers for years.

Security firm Blockaid disclosed the incident on Saturday, saying its exploit-detection system flagged a sweep transaction that pulled WETH, USDC, and USDT out of contracts controlled by the bot. The figure is the largest single-event loss publicly tied to an MEV operator to date. Some of the stolen funds have already been routed through Tornado Cash, according to onchain data cited by both outlets.

A Public On-Chain Identity

Jaredfromsubway.eth is an ENS-named Ethereum address run by an unidentified operator since early 2023, used to execute automated sandwich attacks at scale. In a sandwich attack, a bot front-runs a pending swap with its own buy order, lets the victim trade at the inflated price, then sells immediately after. The named operator is a public on-chain identity, and the address has been active since 2023.

Between November 2024 and October 2025, the bot was responsible for roughly 70% of all sandwich attacks on Ethereum, Cointelegraph Research found, out of 60,000 to 90,000 such attacks each month. Cointelegraph Research has separately estimated that sandwich attacks cost Ethereum traders about $60 million a year.

For long stretches the wallet was the single largest payer of priority fees to Ethereum block proposers, a position it earned by bidding aggressively for transaction-ordering rights on virtually every visible swap.

The address briefly broke into mainstream crypto coverage in May. The bot had sandwiched a roughly $4 token swap by Ethereum co-founder Vitalik Buterin, putting up around $1.14 million in volume to capture a few dollars after fees. The trade illustrated the bot's reach more than its profit margin, and it cemented jaredfromsubway.eth as the most visible symbol of toxic MEV on the network.

How the Bot Lost Its Money

The exploit was a counter-MEV honeypot, Blockaid said, distinguishing it from phishing, a private-key compromise, or a smart-contract bug in a DeFi protocol. "This is not a classic phishing attack and not a traditional smart-contract vulnerability in the victim contract," the firm wrote on X.

Blockaid CTO Raz Niv told Cointelegraph that the attacker spent several weeks staging the trap. The operator deployed 66 fake token contracts mimicking the names and interfaces of WETH, USDC, and USDT. Each was paired with a sham liquidity pool, and the routes were structured so the bot's automated decision logic would treat the contracts as live MEV opportunities. The bot did what it was programmed to do, granting token-spending approvals to attacker-controlled helper contracts. In a single transaction, the attacker then called every contract at once and pulled out real WETH, USDC, and USDT.

Some of the proceeds have been routed through Tornado Cash, per onchain tracing cited by Cointelegraph. The remainder is still held in attacker-controlled addresses, and there has been no public statement from the operator of jaredfromsubway.eth on Ethereum or anywhere else. No exchange has publicly acknowledged freezing or flagging any of the funds.

A Symbol Targeted

The Defiant covered a separate Ethereum exploit pattern in mid-June when an attacker pulled $2.1 million out of Aztec Connect's deprecated rollup contract three years after shutdown. The Aztec loss was a code-level bug; the jaredfromsubway.eth loss is the inverse, with the contract working as designed and the bot's own logic doing the damage. Blockaid had earlier flagged a partial white-hat recovery on Thetanuts Finance in the same window.

MEV operators have not historically been treated as soft targets. They run large stablecoin and ETH balances against complex routing logic, and most professional operators harden their contracts against the kinds of unbounded approvals that make this attack possible. The jaredfromsubway.eth incident sits at the other end of that spectrum. The bot's logic optimized for opportunities the way a market maker does, with the assumption that the universe of pools it interacted with was either legitimate or trivial enough that the lost approvals would not add up. Saturday's sweep showed that assumption fails when a determined adversary spends weeks staging fake pools.

Ethereum's Q2 2026 hack count reached an all-time high of roughly 70 exploits and $746 million stolen before this incident. The MEV-bot exploit is unusual among the quarter's hacks because the victim is not a protocol, not a DAO, and not a custodian. It is a single anonymous operator running automated infrastructure against the open market.

The incident has not had a visible knock-on effect on Ethereum's MEV market. Other sandwich operators continue to bid for block space, and no MEV-Boost relay has announced policy changes in response. For the moment, the story sits as a discrete event. The single most-active toxic-MEV operator on Ethereum lost more in one transaction than most DeFi protocols have lost in any single exploit this year. The adversary used the bot's own logic to do the work.