logo

Inside a Sandwich Attack: Lessons From the $7.5 Million Heist Against JaredfromSubway.eth

ID: b969edfa-ccf0-5f43-a58f-d5ec44ba9b08

STIX ID: report--b969edfa-ccf0-5f43-a58f-d5ec44ba9b08

Feed Name: Chainalysis Blog

Threat Score
70/100

Date Published: 2026-06-26

Date Updated: 2026-06-26

Author: Chainalysis Team

...
...

Over June 20–21, 2026, JaredfromSubway.eth — a prolific Ethereum sandwich bot — was lured into a reverse honeypot: an attacker deployed 66 fake token contracts that induced the bot to grant token-spending approvals, then executed a coordinated sweep that drained at least $7.5 million in ETH and stablecoins, which were quickly converted to ETH and routed through Tornado Cash. The report highlights the systemic risks of unrevoked approvals and interacting with unverified contracts, and recommends revoking unused approvals and vetting contracts before transacting.

Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.