DOJ charges 2 brothers tied to $25M attack on MEV bots last year

The two brothers were arrested in New York and Boston, and they face two courts later Wednesday

article-image

Kristi Blokhin/Shutterstock modified by Blockworks

share

Two brothers accused of orchestrating an attack last year on Ethereum trading bots have been indicted by the US government. 

The Department of Justice unsealed charges against Anton Peraire-Bueno and James Peraire-Bueno on Wednesday.

The pair are charged with conspiracy to commit wire fraud, wire fraud, and conspiracy to commit money laundering after the brothers allegedly tried to “exploit the very integrity of the Ethereum blockchain to fraudulently obtain approximately $25 million worth of cryptocurrency within approximately 12 seconds.”

Both were arrested on Tuesday and will face judges in Massachusetts and New York. 

The April 2023 exploit targeted bots that seek profit by essentially trying to front-run transactions on the network. Maximum extractable value, or MEV, referring to the maximum value that can be obtained during transaction block production beyond rewards and fees. 

Read more: Ethereum Validator Goes Rogue, Frontruns MEV Bots for $25M

The Peraire-Bueno brothers sought to “lure” MEV bots from the traders they allegedly targeted by “proposing at least eight specific transactions that…the defendants knew would cause the” targeted bots to include the lure transactions in the bundles, the indictment said. The exploit took advantage of a since-patched code vulnerability in the MEV-Boost software. 

“In each of these eight bundles, the victim traders effectively bought substantial amounts of particularly illiquid cryptocurrencies…for approximately $25 million of various stablecoins.” 

“Through the Exploit, which is believed to be the very first of its kind, Anton Peraire-Bueno and James Pepaire-Bueno manipulated and tampered with the process and protocols by which transactions are validated and added to the Ethereum blockchain. In doing so, they fraudulently gained access to pending private transactions and used that access to alter certain transactions and obtain their victims’ cryptocurrency,” a DOJ press release said. 

To avoid detection, the two tried to conceal their identities through shell companies and private crypto addresses. 

Following the attack, the brothers even “transferred the stolen cryptocurrency through a series of transactions designed to conceal the source and ownership of the stolen funds.”

They researched know-your-customer (KYC) procedures online, per the indictment, to learn the KYC standards and extradition procedures. They allegedly also researched the crimes they’d end up being charged with.

“As alleged in today’s indictment, the Peraire-Bueno brothers stole $25 million in Ethereum cryptocurrency through a technologically sophisticated, cutting-edge scheme they plotted for months and executed in seconds,” said Deputy Attorney General Lisa Monaco.


Start your day with top crypto insights from David Canellis and Katherine Ross. Subscribe to the Empire newsletter.

Explore the growing intersection between crypto, macroeconomics, policy and finance with Ben Strack, Casey Wagner and Felix Jauvin. Subscribe to the On the Margin newsletter.

The Lightspeed newsletter is all things Solana, in your inbox, every day. Subscribe to daily Solana news from Jack Kubinec and Jeff Albus.

Tags

Upcoming Events

Salt Lake City, UT

MON - TUES, OCT. 7 - 8, 2024

Blockworks and Bankless in collaboration with buidlbox are excited to announce the second installment of the Permissionless Hackathon – taking place October 7-8 in Salt Lake City, Utah. We’ve partnered with buidlbox to bring together the brightest minds in crypto for […]

Salt Lake City, UT

WED - FRI, OCTOBER 9 - 11, 2024

Pack your bags, anon — we’re heading west! Join us in the beautiful Salt Lake City for the third installment of Permissionless. Come for the alpha, stay for the fresh air. Permissionless III promises unforgettable panels, killer networking opportunities, and mountains […]

recent research

Polygon Call Template (2).png

Research

A significant portion of the call was dedicated to discussing the proposed ZK-PoS Phase 1, which aims to connect Polygon PoS to the AggLayer using a ZK proof of consensus, in addition to a pessimistic proof. This upgrade is intended to generalize how chains settle while protecting chain health and asset integrity. The implementation will involve deploying new contracts for the LxLy unified bridge for token mapping and migrating existing tokens from the PoS portal to the new deployment.

article-image

It may be counterintuitive that a high amount of focus on a technology would lead to security risks — but it’s true

article-image

Structured products are common in traditional finance, but onchain options are scant

article-image

Plus, an update on the ether ETF front and an overview of this week’s economic calendar

article-image

Plus, Solana fell roughly 12% on the week, and for some memecoins the drawdown was even more aggressive

article-image

Mark Wong is currently seeing some profit-taking from early bitcoin adopters, but he also sees buying interest from institutions

article-image

Bitcoin has been in a bull market for 19 months. If March wasn’t the top, that is.