Protect Your Project Today
Strengthen your project with the largest web3 security provider.
A CertiK security expert will review your request and follow up shortly.

Sneaky Sandwich Exploit: The BabyDoge Attack Caused 442 BNB Loss

Reports ·Incident Analysis ·
Sneaky Sandwich Exploit: The BabyDoge Attack Caused 442 BNB Loss

Project name: Baby Doge

Project type: Token

Date of exploit: Jun 21, 2023

Asset loss: 442 BNB

Vulnerability: Sandwich attack

Date of audit report publishing: Nov 16th, 2021

Conclusion: The issue was identified by CertiK but fell outside of the audit scope

Details of the Exploit

Background

BabyDoge coin is a deflationary token that charges fees during token transfers, and a proportion of fees will be added as liquidity to the BabyDoge/BNB pool.

Nature of the Vulnerability

The vulnerability involved a sandwich attack targeting the add liquidity operation, vulnerable to arbitrage if slippage isn't configured. Typically, transfer fees make such attacks unprofitable.

However, BabyDoge's fee exemption for a specific contract lets attackers transfer large Babydoge token amounts fee-free(without paying the tx fee), turning the exploit profitable.

CertiK Audit Overview

Screenshot 2024-01-08 at 5.15.22 AM Screenshot 2024-01-08 at 5.15.22 AM

Conclusion

On Jun 21, 2023, BabyDoge was attacked, leading to a loss of 442 BNB. The attacker made use of a contract that could waive the fee and performed a sandwich attack. The vulnerability lies in a manual operation that excluded a third-party contract from the fee, thus making the sandwich attack exploitable.

Related Blogs

SOF/LAXO Incident Analysis
Reports ·Incident Analysis

SOF/LAXO Incident Analysis

In February 2026 two separate exploits occurred on the BNB Smart Chain (BSC), affecting SOF and LAXO tokens, leveraging the same class of vulnerability: a flawed token burn mechanism that allowed price manipulation within a single transaction.

Top 10 AI Agent Projects on BNB Chain
News ·Products & Services

Top 10 AI Agent Projects on BNB Chain

The Top10 AI Agent Projects on BNB Chain showcases the most trending AI Agent projects based on Skynet Score. These rankings reflect a comprehensive evaluation of security posture, operational maturity, market presence, and ecosystem traction. As autonomous on-chain agents gain adoption, security and infrastructure reliability remain the primary determinants of sustainable growth and institutional trust.

The Enterprise DLT Oracle Challenge
Technical Blogs ·Vulnerability Research

The Enterprise DLT Oracle Challenge

In DeFi, oracle failures can cause financial losses within a system that broadly accepts risk. Enterprise DLT operates in a different world. The assets are physical. The counterparties are regulated. The consequences are legal.