A cryptocurrency trader lost nearly $2 million after a large Ethereum-to-token swap on Uniswap was routed through a thinly traded liquidity pool, allowing a sophisticated MEV bot to arbitrage the resulting price distortion within the same block, an incident security researchers say was not a conventional sandwich attack, but a same-block backrun.
According to blockchain security firm GoPlus Security, the loss stemmed from poor routing into a thinly traded liquidity pool, allowing a sophisticated backrunner to capture nearly the entire value of the transaction within the same Ethereum block.
How the $2 million trade unraveled
According to on-chain data reviewed by GoPlus Security and blockchain analytics platforms, the trader swapped approximately 1,126 ETH, valued at roughly $2.01 million, expecting to receive LIT tokens through Uniswap.
Instead, the transaction was routed through an AVAIL/WETH liquidity pool that contained extremely limited liquidity.
The oversized order dramatically inflated the price of AVAIL, reportedly to around 120 times its fair market value before continuing through additional swaps.
A sophisticated MEV backrunner immediately detected the temporary pricing imbalance and executed an opposing trade within the same Ethereum block, withdrawing approximately 1,072 WETH while restoring the pool’s price to market levels.
According to GoPlus, roughly 1,018 ETH from the extracted value was paid to Titan Builder, the block builder responsible for transaction ordering.
The victim ultimately received only about 5,776 LIT tokens, worth roughly $14,000, resulting in losses approaching the full value of the original trade.
Security researchers say it was not a sandwich attack
The incident initially sparked speculation across crypto social media that the trader had been targeted by a classic sandwich attack. However, blockchain security researchers quickly clarified that the mechanics were different.
“The core cause was not a sandwich attack, but a backrunner arbitrage within the same block.” — GoPlus Security, official analysis.
GoPlus explained that the routing contract itself introduced the vulnerability by directing the transaction into an illiquid pool where severe price distortion became inevitable.
Blockchain analytics platform Lookonchain also tracked the transaction, confirming that the overwhelming majority of the extracted ETH was transferred as a builder payment.
MEV remains one of DeFi’s biggest execution risks
The latest exploit has reignited discussion around Maximum Extractable Value (MEV) the profit validators, builders, and specialized bots can earn by strategically reordering or inserting transactions during block production.
While MEV has become an integral part of Ethereum’s ecosystem, incidents like this demonstrate that poor routing and insufficient liquidity remain significant risks for traders executing large on-chain swaps.
Academic researchers have warned for years that decentralized exchanges are particularly susceptible to transaction-ordering strategies.
“We document the widespread deployment of arbitrage bots in decentralized exchanges.” — Philip Daian et al., “Flash Boys 2.0”, Cornell University.
Similarly, researchers studying decentralized exchange infrastructure have found that backrunning mechanisms can improve market efficiency while simultaneously exposing traders to manipulation under certain market conditions.
The event also illustrates that execution quality not simply token selection has become a critical component of decentralized trading, particularly for institutional participants and high-net-worth traders moving large amounts of capital.
Why crypto investors should pay attention
For crypto investors, the incident serves as another reminder that decentralized finance carries risks beyond smart contract exploits and protocol hacks.
Large trades executed through automated routing algorithms may encounter unexpected liquidity conditions that create temporary pricing dislocations.
Once these distortions appear, sophisticated MEV searchers can rapidly exploit them before the transaction settles, often within milliseconds.
Although no protocol vulnerability or blockchain compromise occurred, the economic outcome was similar to a catastrophic exploit from the trader’s perspective.
Industry observers expect decentralized exchange aggregators to continue improving routing algorithms, slippage protection, and MEV mitigation techniques.
However, the latest incident demonstrates that execution risk remains one of the least understood challenges facing DeFi users, particularly during high-value transactions involving illiquid assets.
As institutional adoption of decentralized finance accelerates, reducing exposure to MEV extraction is likely to become a competitive priority for wallet providers, decentralized exchanges, and transaction builders seeking to improve execution quality for users.