Inside a Sandwich Attack: Lessons From the $7.5 Million Heist Against JaredfromSubway.eth
ID: b969edfa-ccf0-5f43-a58f-d5ec44ba9b08
STIX ID: report--b969edfa-ccf0-5f43-a58f-d5ec44ba9b08
Feed Name: Chainalysis Blog
Over June 20–21, 2026, JaredfromSubway.eth — a prolific Ethereum sandwich bot — was lured into a reverse honeypot: an attacker deployed 66 fake token contracts that induced the bot to grant token-spending approvals, then executed a coordinated sweep that drained at least $7.5 million in ETH and stablecoins, which were quickly converted to ETH and routed through Tornado Cash. The report highlights the systemic risks of unrevoked approvals and interacting with unverified contracts, and recommends revoking unused approvals and vetting contracts before transacting.
Your team is not currently subscribed to this feed. You must subscribe to it in order to see this post.
