A successful Maximal Extractable Value (MEV) bot, known as 0xbadc0de, fell victim to a 1,100-ETH hack yesterday in an entertaining display of on-chain karma.
MEV bots are smart contracts that observe pending blockchain transactions and aim to make a profit from the results.
For example, when a user swaps tokens via a decentralized exchange’s liquidity pools, the price of the tokens on the exchange is affected, potentially creating an arbitrage opportunity that may be spotted by a bot.
This is precisely what happened in the hours leading up to the theft, when an unlucky user attempted to razmjena $1.85 million worth of cUSDC to USDC through an illiquid pool, receiving just $500 in return. 0xbadc0de then exploited the imbalance, netting 800 ETH (~$1 million) via a complex automated arbitrage trgovina involving multiple DeFi platforms.
još jedan user, though, had their eyes on 0xbadc0de’s profits. An hour after the above example, all ETH was prebačen out of the MEV bot contract to the attacker’s address.
According to MEV expert Bert Miller, 0xbadc0de’s code was not sufficiently protected against other contracts, and the attacker was able to approve their own address to transfer 0xbadc0de’s ETH tokens.
Na lancu poruka was then sent via transaction input data to the attacker from the bot’s operator’s requesting that the funds are returned and offering a 10% bounty.
Čitaj više: Objašnjeno: Zašto hakeri nastavljaju iskorištavati cross-blockchain mostove
MEV bots, also known as searchers, are a divisive feature of blockchain-based DeFi. While they act as automated arbitrageurs, balancing prices across decentralized exchanges, the fact that they profit from manipulating and front-running trades, often at significant expense to ordinary users, has led to a predatory reputation.
Given the trade they ply, 0xbadc0de’s demand for the return of funds seems rather rich, and many DeFi users have viewed the incident as a prime example of “what goes around, comes around.”
Za detaljnije vijesti, pratite nas cvrkut i Google vesti ili poslušajte naš istraživački podcast Inovirano: Blockchain City.
Source: https://protos.com/blockchain-predator-0xbadc0de-becomes-prey-loses-1100-eth/