Blog

Coinbase loses 300 thousand dollars after the 0x contract error allows mev Bot Drain

Photo of cryptobizinvest.com cryptobizinvest.com Send an email August 14, 2025
0 0 2 minutes read


Coinbase has lost about $ 300,000 as a symbolic drawing after agreeing to the assets by mistake for a smart contract for the project 0x, which allows the maximum amount of extractable value (MEV) to drain money.

Depez, security researcher in the Finn Network, A mark has been placed The incident explained in the Wednesday publication on X. that Coinbase’s portfolio interacted with the “Swapper” contract of 0x, which is a tool without permission designed to implement the baccalaureate but not to receive symbolic approvals.

Since anyone can contact the contract for arbitrary procedures, granting approvals can expose assets to an immediate theft. The researcher wrote, “It is known that this Swapper himself has problems with Zora’s allegations on the base,” where he linked the previous cases where the preparation enabled harmful actors to extract funds without exploiting the security gaps.

DEBEZ screenshots have shown the grants of approvals on symbols including AMP, MyoneProtocol, Dextools and Swell Network on Wednesday afternoon. Soon after, the MEV robot called a Swapper contract to transfer the codes approved from the Coinbase fee account to its addresses.

Coinbase loses $ 300,000 after incorrectly using Swapper. source: Deepz

Related to: MEV on Ethereum is increasingly centralized

MEV BOT lurking in the dark

Dipz said MEV robot That money drained from Coinbase was “lies in the dark”, pending approval of the contract by mistake to drain all their money. “Their dream has become really thanks to Coinbase,” the researcher wrote.

The researcher added that the accident, which drained the Coinbase reception account for all the distinctive symbols, was a “costly lesson” for the team.

Queens, chief security officer Philip Martin certain The accident, which describes it as an “isolated problem” associated with changing the composition in an Exchang department.

“Customer money was not affected,” Martin said, adding that Coinbase canceled symbolic suits and transferring the remaining funds to a new portfolio for companies.

Related to: Crypto MEV BOT launches a commercial robot for encryption for individual traders and institutions

The cost of exploiting the MEV BOT $ 180,000 in the ether

In April, MEV robot It lost about $ 180,000 In the ether (Eth) After the attacker took advantage of a security vulnerability in the arrival control system. According to what was reported, the attacker replaced the spirit of the robot of a symbol that has no value through a harmful gathering that was created in the same transaction.

In a similar incident in 2023, a rogue auditor MEV robots exploitation Trying “Sandwich deals”, stealing $ 25 million in digital assets, including WBTC (Wbtc), USDC (USDC), Usdt (USDTDai (Dai(Weth (weth).

https://www.youtube.com/watch?

magazine: Coinbase Hack explains that the law may not protect you – here