TLDR
- DeFi history’s largest execution loss occurred March 12 when a trader swapped over $50 million in USDT for AAVE tokens, receiving only $36,000 in value.
- While Aave pointed to market illiquidity, CoW Swap’s analysis uncovered multiple infrastructure breakdowns, including outdated gas limits that blocked superior quotes.
- The top-performing solver secured two auction wins but never executed transactions, allowing the worst possible trade to proceed.
- Evidence suggests a mempool leak enabled MEV bot extraction of approximately $34 million, plus another $10 million from a sandwich attack.
- “Aave Shield” is being implemented to automatically prevent swaps exceeding 25% price impact.
A catastrophic trade executed March 12 saw an Aave platform user exchange $50.4 million in aEthUSDT tokens for approximately $36,000 worth of AAVE. The transaction routed through CoW Swap, a decentralized exchange natively integrated into Aave’s user interface.
March 15 brought separate incident reports from both platforms. While basic facts align between the two analyses, their conclusions about root causes diverge.
According to Aave, the fundamental issue stemmed from severe market illiquidity. The swap executed through a SushiSwap liquidity pool containing merely $73,000 in total value.
Before confirming the transaction, the user viewed a “High price impact (99.9%)” notification. They additionally checked a confirmation box acknowledging potential 100% value loss—a step Aave verified through internal audit records.
The user completed the swap via mobile device despite these alerts. Aave reports the affected assets remain in place, with no communication received from the impacted party.
CoW Swap’s System Failures Amplified the Damage
CoW Swap’s incident analysis identified numerous technical breakdowns that escalated a problematic trade into an unprecedented disaster.
Three solvers provided responses during the quote generation phase. The strongest available quotes would have delivered approximately $5 to $6 million in AAVE value—representing roughly 90% loss but dramatically better than the actual outcome.
CoW Swap’s quote validation infrastructure relied on a fixed 12 million unit gas limit. The platform described this as “legacy code predating current gas consumption patterns.” Superior pricing routes exceeded this threshold and faced automatic rejection.
A single quote cleared validation—offering around 329 AAVE tokens, roughly 150 to 200 times inferior to rejected alternatives. This quote established the order’s limit price.
Solver E subsequently identified an improved route and secured consecutive auction victories. However, it never broadcast either transaction on-chain. Following two execution failures, it ceased bidding. CoW admitted lacking any mechanism to identify or respond to this failure pattern.
MEV Exploitation and Potential Mempool Compromise
With only an inferior solver remaining active, conditions favored exploitation. Blockchain records indicate block builder Titan Builder captured roughly $34 million in ETH from the transaction. An independent MEV bot secured nearly $10 million through sandwich attack methodology.
CoW Swap identified potential mempool leakage. Despite private channel submission, Etherscan displayed tagging suggesting public mempool visibility before block inclusion. This investigation continues.
CoW Swap’s Aave integration had emphasized MEV-protection features when the partnership expanded in December 2025.
Aave Shield deployment is now underway, establishing default blocking for swaps exceeding 25% price impact. CoW Swap confirmed the hardcoded gas limit has been corrected. This incident occurred just two days following a separate Aave oracle malfunction that triggered $26 million in improper liquidations affecting 34 accounts.
