Key Highlights
- A bot farm used over 1,000 wallets to buy almost all WET tokens in seconds, blocking regular buyers.
- HumidiFi canceled the presale, plans a new token, and will airdrop tokens to legitimate participants.
- Bubblemaps traced the attack to a single entity controlling most of the fake wallets.
A Solana-based WET token presale hosted by automated market maker HumidiFi on the Jupiter platform ran into major problems. A bot farm used more than 1,000 fake wallets to buy almost all the tokens in just seconds.
The incident occurred in December 2025, leaving regular buyers with almost no chance to get any tokens. HumidiFi confirmed the attack on X and decided to cancel the presale completely.
Bots took over the sale, leaving real buyers out
The presale was supposed to be fair. It was split into three groups: one for Jupiter stakers, one for whitelist buyers, and a public sale. Even with these rules, the bot wallets quickly connected to the smart contract and bought nearly all the tokens before anyone else could join.
“For the public sale, a bot farm sniped the entire supply instantly and weterans were not able to participate.” HumidiFi wrote on X.
HumidiFi’s fix: A new token and airdrop for real users
To fix the problem, HumidiFi said it would create a new token and give a pro-rata airdrop to real buyers. They said the bot attacker would not get anything.
“We are creating a new token. All Wetlist and JUP staker buyers will receive a pro-rata airdrop. The sniper is not getting shit,” the team said. A new public sale will happen soon.
Blockchain analytics firm Bubblemaps found that the attack came from one main person controlling at least 1,100 of the 1,530 wallets used in the presale. Bubblemaps CEO Nick Vaiman said that the wallets showed the same patterns in funding and timing.
“Despite some of the clusters not connected together onchain, the behavioral similarities in size, time, and funding all point to a single entity,” he said.
Bubblemaps also linked the attack to an X account, “Ramarxyz,” who asked for a refund after the attack. The company noted that the suspicious wallets were funded in a tight time window with 1,000 USDC each, which shows that the attacker had planned the buy carefully.
Impact on WET presale
The initial WET presale raised $1.39 million in USDC, valuing the project at $69 million. The token briefly rose to $0.25 before falling to $0.15 after the bot attack was revealed. The new token distribution, planned for December 9, may be delayed because of the relaunch.
HumidiFi has rapidly become one of Solana’s highest-volume DEXs, known for its dark-liquidity architecture designed to hide order flow and reduce MEV attacks.
According to DeFiLlama, the platform processed $833M in 24h volume, $7.7B over 7 days, and $29.9B in 30-day volume, with $122B+ in cumulative trading activity. Its rapid growth since mid-2025 has made it a preferred venue for whales seeking low slippage and private execution.
HumidiFi routes trades through encrypted liquidity pools, preventing front-running and reducing price impact during volatile periods. However, the WET presale incident shows that while HumidiFi’s design protects regular trading, contract-level presale sniping is a separate vulnerability that MEV shielding alone cannot prevent.
Also Read: Indiana Lawmaker Proposes Crypto Options for State Retirement Plans
