In a Twitter thread, Robert Miller, who works at the research firm Flashbots, shared how a Maximal Extractable Value (MEV) bot with the prefix 0xbadc0de was able to earn 800 Ether (ETH), around $1 million, through arbitrage trades.
According to Miller, the bot took advantage of a huge arbitrage opportunity that came when a trader attempted to sell $1.8 million in cUSDC through the decentralized exchange (DEX) Uniswap v2 and only got $500 worth of assets in return. The bot detected this chance and immediately sprung to action and gained massive profits.
However, only an hour later, a hacker exploited a vulnerability in 0xbadc0de’s “bad code” and tricked it into authorizing a transaction that drained its balance of 1,101 ETH, which was around $1.41 million at the time of writing.
On Sept. 18, a vulnerability in Profanity, an Ethereum vanity address generator, was exploited, draining $3.3 million in funds from various wallets. Investigations done by the decentralized exchange (DEX) aggregator 1inch Network highlighted that there was ambiguity in terms of the creation of the wallets. The DEX warned users that their wallets were at risk and urged them to transfer their assets.
More than a week later, another vanity wallet address was exploited and drained of almost $1 million worth of ETH. After stealing the funds, the hackers immediately sent them to the controversial crypto mixer Tornado Cash.
- ^ decentralized finance (DeFi) (cointelegraph.com)
- ^ shared (twitter.com)
- ^ 0xbadc0de (etherscan.io)
- ^ ETH (cointelegraph.com)
- ^ decentralized exchange (DEX) (cointelegraph.com)
- ^ #MEV (twitter.com)
- ^ https://t.co/FxXSY8AyhX (t.co)
- ^ September 27, 2022 (twitter.com)
- ^ exploited (twitter.com)
- ^ Pantera CEO bullish on DeFi, Web3 and NFTs as Token2049 gets underway (cointelegraph.com)
- ^ draining $3.3 million in funds (cointelegraph.com)
- ^ drained of almost $1 million (cointelegraph.com)
This article was first published on Cointelegraph.com