Ethereum MEV bot JaredFromSubway was reportedly exploited for over $17M after an approval-based attack drained key tokens.
Ethereum traders are reviewing a major security incident after JaredFromSubway, one of the network’s best-known MEV bots, was reportedly exploited.
Blockchain security firm Blockaid said the bot lost about $7.5 million through attacker-controlled contracts designed to mislead its automated execution system.
Separate on-chain reports later placed the wider loss above $17 million, increasing attention around automated trading risks across EVM networks.
The incident has drawn notice because JaredFromSubway has long been linked to high-volume MEV activity on Ethereum decentralized exchanges.
JaredFromSubway Hit by Approval-Based Exploit
Blockaid said the incident was not caused by phishing, stolen private keys, or a direct smart-contract flaw.
Instead, the attacker targeted the bot’s automated MEV opportunity detection and approval process.
According to the firm, attacker-controlled contracts tricked the bot into granting token approvals.
Those approvals later allowed the attacker to drain assets that remained exposed through the bot’s permissions.
Ethereum's Well-Known MEV Bot JaredFromSubway Exploited, Suffers $7.5 Million Loss
Blockchain security firm Blockaid reported that Ethereum MEV bot JaredFromSubway lost approximately $7.5 million after attacker-controlled contracts tricked its automated execution system into… pic.twitter.com/jIGWAiDW9F
— Wu Blockchain (@WuBlockchain) June 20, 2026
The stolen assets included WETH, USDC, and USDT, which are widely used across Ethereum trading venues.
The attacker then used the remaining allowances to move funds from the bot’s wallet.
Reports Put Wider Loss Above $17 Million
Blockaid’s early review placed the loss near $7.5 million, based on the assets it identified during its analysis.
However, other on-chain trackers later said the exploit appeared to exceed $17 million.
JUST IN: Well known EVM MEV bot Jaredfromsubway.eth appears to have been exploited for more than $17M. pic.twitter.com/Oi6xXPCuN6
— SolanaFloor (@SolanaFloor) June 20, 2026
The different figures may reflect separate wallet movements, delayed tracing, or related transactions identified after the first reports.
Blockchain investigations often change as analysts connect contracts, approvals, and token flows.
JaredFromSubway is one of the most recognized MEV bots on Ethereum because of its past trading activity.
The bot has been associated with strategies that extract value from transaction ordering.
Read Also:
Ethereum Recovery Faces $1,800 Test as ETH Staking Hits Record 32.7% Supply
Ethereum Traders Watch MEV Bot Risks
MEV bots usually monitor pending transactions and decentralized exchange activity to find arbitrage or sandwich trading opportunities.
These systems depend on speed, automation, and broad contract interaction.
For Ethereum traders, the incident is notable because it affected a bot built for advanced on-chain execution.
The attacker appeared to study the bot’s behavior and use that logic against it.
Blockaid said the attack exploited the bot’s automation rather than Ethereum itself. The final loss figure may change as more wallets and contracts are reviewed by on-chain analysts.
Leave a Reply
You must be logged in to post a comment.