MEV Bot 'Yoink' Exploits Vulnerabilities in Wayfinder's Airdrop, Drains $200,000 in Ethereum
An Ethereum Maximum Extractable Value (MEV) bot, known as "Yoink," has been implicated in a significant security breach involving Wayfinder's newly-launched PROMPT token airdrop. This exploit led to the front-running of Kaito user claims, resulting in the bot siphoning off approximately 119 ETH, which translates to about $200,000, before the issue was detected and the operation was halted. This alarming incident has been verified through on-chain data analysis.
MEV attacks, which occur when malicious entities reorder Ethereum transactions to profit at the expense of regular users, have become a notorious issue within the cryptocurrency ecosystem. With the advent of advanced AI-driven bots such as "Yoink," the threat landscape is evolving rapidly, resulting in attacks that are not only more prevalent but also increasingly sophisticated.
In response to the exploit, TokenTable, the organization overseeing the PROMPT token airdrop, decided to pause the distribution process. They are currently working to address the fraudulent transactions and have committed to fully compensating all affected users, including covering any incurred gas fees. The TokenTable team has reassured users that the underlying smart contract remains secure and unaffected, while they are investigating the incident and believe an MEV attack is to blame.
On social media platform X (formerly Twitter), a user known as @0x_ultra expressed their frustration, stating, "Hey @AIWayfinder, I think a MEV frontrunner is stealing and swapping all $PROMPT @KaitoAI claims for ETH." This tweet encapsulates the concerns of many who believe their claims have been compromised.
Wayfinder is an innovative AI blockchain project designed to provide users with an on-chain agent that facilitates interactions with various smart contract applications. The project recently initiated a token generation event on the Ethereum mainnet and Base Layer 2, aimed at distributing tokens to users who had previously staked PRIME, the governance and utility token for the Echelon Prime Foundation, which is behind the Wayfinder initiative. Additionally, those who engaged with Kaitoan online platform that transforms unstructured social media data into actionable market insightswere also included in the airdrop.
As part of their promotional strategy, Wayfinder allocated a total of 0.25% of the entire $PROMPT token supply specifically for Yappers. These users were rewarded for completing various "social missions," which included connecting their X accounts to the Wayfinder dashboard, launching wallets, and sharing referral codes.
However, earlier on Thursday, several users began to voice their concerns over not receiving the expected allocations of tokens. This prompted some crypto commentators to issue warnings, advising users to refrain from claiming their tokens until the situation was resolved. Notably, a well-known trader, notsofast, cautioned, "If you got $PROMPT from Kaito yapping, DO NOT CLAIM IT until they fix the claim contract!!!!! Otherwise, you will get your claim Yoink'd by a MEV bot!!!!!!!!!!!!!!!!!!!" This cautionary advice reflects a growing consensus among users who have been impacted.
The bot in question, identified by its address 0xFDe0d, currently possesses a balance exceeding 64 ETH. It has been observed to redirect valid PROMPT claims to a different address starting with 0xB16207, allowing it to swap the tokens for ETH before legitimate claims are processed.
As of now, TokenTable has not provided a clear timeline for when the Kaito claims process will be reinstated. However, the team has promised a comprehensive post-mortem analysis once the claim system is back online, in an effort to shed light on the incident and provide transparency to the affected users.
It is important to note that this article is published by The Block, an independent media outlet dedicated to delivering news, research, and data related to the cryptocurrency industry. As of November 2023, Foresight Ventures holds a majority stake in The Block, and while the venture invests in various companies within the crypto space, it maintains editorial independence to ensure unbiased reporting on industry developments.
This article is intended solely for informational purposes and should not be construed as legal, tax, investment, or financial advice.
