Nearly 21 million dollars lost in five days across Aztec, Taiko, and MEV protocols! What does this wave of attacks reveal about crypto security?

Losses at Aztec and Taiko

One of the most striking incidents centered on the Aztec project, which was hit by two separate attacks within just three days. The latest breach exploited a flaw in the protocol’s escape hatch mechanism, resulting in the loss of about 2.5 million dollars via the Private Rollup Bridge. An earlier vulnerability, discovered shortly before, was attributed to a mismatch between transaction counts and committed rollup data.

Glossary: A rollup is a layer two scaling solution that groups transactions off the main blockchain and writes them to the chain in batches. In zero knowledge-based systems, part of the verification occurs off-chain, making alignment between on-chain and off-chain controls absolutely critical.

These back-to-back incidents have underscored just how difficult it has become to secure increasingly complex layer two and zero knowledge architectures, with vulnerabilities frequently emerging at the intersection of on-chain and off-chain verification systems.

Similarly, Taiko disclosed a breach that compromised its chain state verification system, reportedly resulting in a loss of around 1 million dollars. In the aftermath, affected users rushed to withdraw assets from compromised bridges. Taiko is recognized as a layer two network purpose-built for Ethereum, known for its high compatibility with the main Ethereum chain.

MEV bot and suspicious BNB Chain event

Prominent MEV operator jaredfromsubway.eth, a familiar name in the Ethereum ecosystem, also became the victim of an unorthodox attack. Instead of exploiting a classic smart contract bug, the attacker deceived the bot’s automated trading logic. By creating fake wrapped assets and misleading liquidity pools, the perpetrator simulated a lucrative sandwich trade opportunity. Exploiting the permissions granted by the bot, they siphoned off approximately 15 million dollars.

Glossary: MEV, or maximal extractable value, refers to strategies that increase profit by influencing the order and selection of transactions in a block. A sandwich attack involves placing trades before and after a user’s transaction to capture profit from price movement.

In this case, rather than using a classic vulnerability, the attacker manipulated the bot’s automated strategy, convincing the system that a profitable opportunity existed.

Meanwhile, Labubu, a project on the BNB Chain, suffered losses of about 1.15 million dollars in what appears to be an insider event. After a suspicious parameter change destabilized the pool, ownership structures were altered right before the incident; this led to speculation that the attack may have involved someone close to the project, rather than an external attacker.

The changing nature of threats

Taken together, these cases show that crypto security risks now extend far beyond simple coding mistakes. Attackers are increasingly targeting operational weaknesses, automated processes, system interactions, and overlooked protocol design assumptions.

As layer two solutions, bridges, verification systems, and automated trading platforms become interconnected, the defense landscape is growing ever more complex. This evolving environment demonstrates that relying on code audits alone is not enough to secure blockchain infrastructure; the integrity of every layer must be thoroughly tested and scrutinized.