staking-launchpad icon indicating copy to clipboard operation
staking-launchpad copied to clipboard
verified publisher icon ethereum

Security: Suggest using a private relay to avoid front-running attack

Open FuzzyDream opened this issue 2 years ago • 2 comments

Obviously everyone should keep their mnemonic safe, but in the event that a mnemonic is compromised and the user doesn't know it, my understanding is that it is safer to deposit using a private relay like flashbots, just in case. I have heard (on the staking discord) that a hacker with your mnemonic can watch the mempool for your deposit and use MEV to put their own 1ETH deposit in front of yours with a different withdrawal address, thereby stealing the entirety of your new deposit.

It seems like it would be a good idea to have the launchpad recommend using a private relay, just to be extra safe.

FuzzyDream avatar Jul 03 '23 05:07 FuzzyDream

My writeup of what I understand of the front-running attack: https://www.reddit.com/r/ethstaker/comments/14p9nqr/warning_for_the_ultraparanoid_you_are_probably/

I'm not an expert. I apologize if I got any of this wrong, and I welcome clarification and correction from those who know better.

FuzzyDream avatar Jul 03 '23 05:07 FuzzyDream

Good

Ameralameri avatar Sep 23 '23 18:09 Ameralameri