Ex-Pump.fun Dev Jailed in London After $2M Crypto Heist—Could Face 7+ Years Behind Bars
Crypto's wild west just got a new outlaw. A former Pump.fun developer—now facing over seven years in prison—was arrested in London for violating bail terms after allegedly siphoning $2M from the platform.
From code to custody: How DeFi's 'trustless' ethos keeps meeting human nature.
London's Metropolitan Police confirmed the arrest, though the suspect's lawyers claim it's a 'misunderstanding'—because nothing says 'misunderstanding' like skipping bail after a seven-figure digital asset grab.
The irony? This happens as traditional finance giants finally start dabbling in blockchain—just in time to watch another crypto native prove why regulators lose sleep.
NEWS: According to Decrypt, ex-@pumpdotfun senior dev @STACCoverflow (Jarett Dunn) is jailed in London for breaching bail conditions and faces at least 7 years in prison. Last year, he stole ~$2M from PumpFun and sent it to a random address.. pic.twitter.com/5mQGwwUppN
— SolanaFloor (@SolanaFloor) July 18, 2025
The Theft and Its Aftermath
Dunn’s attack on Pump.fun occurred during his brief six-week employment with the company in May 2024, when he exploited his access to private keys to drain funds from bonding curve contracts.
The stolen SOL tokens, worth approximately $2 million, were intended for transfer to the Raydium decentralized exchange, but were instead diverted to unrelated wallet addresses.
Rather than keeping the funds, Dunn immediately began airdropping the stolen tokens to random wallet addresses, selecting holders of various solana tokens and NFTs as unwitting recipients. His actions prompted Pump.fun to temporarily shut down its platform while it investigated the breach and cooperated with law enforcement.
Within minutes of the exploit, Dunn claimed responsibility through his Twitter account, posting erratically about his actions and motivations.
“Everybody be cool, this is robbery,” he wrote, adding that he was “about to change the course of history” and expected to “rot in jail.”
And now; Magick: everybody be cool, this is a r o b b e r y. What it do, staccattack? I'm about to change the course of history. n then rot in jail. am I sane? nah. am I well? v much not. do I want for anything? my mom raised from the dead n barring that: /x
— stacc's futard arc. (@STACCoverflow) May 16, 2024During a Twitter Spaces session immediately following the attack, Dunn expressed his disdain for the platform he had targeted.
“I just kind of wanted to kill Pump.fun because it’s something to do,” he stated, claiming the platform had “inadvertently hurt people for a long time.”
He described the company as “horribly managed” and said he had “personal grievances” against its leadership.
Dunn initially pleaded guilty to fraud charges in October 2024, but requested to withdraw his plea during what was scheduled to be his sentencing hearing. His legal team subsequently quit the case, leaving him to handle the complex legal proceedings while living in London under bail conditions that included movement restrictions and electronic monitoring.
The breach of his bail conditions occurred in early June 2025 when Dunn moved from London to Liverpool without authorization, violating the terms of his release.
He was subsequently arrested and held at Walton Prison in Liverpool before being transferred to HMP Pentonville in London, where he remains on remand, awaiting a formal hearing to withdraw his guilty plea.
His friend Mark Kelly, who has been communicating with Dunn through calls from behind bars, confirmed details of the bail breach to media outlets.
“He’s remarkably cool and zenlike considering his situation,” Kelly said.
The Growing Epidemic of Crypto Insider Attacks
Dunn’s case contributes to a growing trend of insider threats within the cryptocurrency industry, where employees with privileged access exploit their positions for personal gain or ideological reasons.
Recent incidents include Coinbase rejecting a $20 million ransom demand in May 2025 after overseas support staff were bribed to leak user data, and Pond.fun suffering a hack in March 2025, allegedly perpetrated by its own lead software engineer who drained liquidity through blockchain privacy protocols.
@Coinbase has disclosed a data breach involving a small subset of customer information.#Coinbase #DataBreach https://t.co/qfBEmf3Cc0
South Korea also recently sentenced an illegal XRP exchange operator to eight years in prison for defrauding investors of $3.4 million.
Since Dunn’s attack, the platform has evolved from operating out of a WeWork office in London to become what analysts describe as “one of the most used apps in crypto history.”
Despite the success of Pump.fun, it has also been continually criticized for allegedly facilitating pump-and-dump schemes and questionable promotional tactics.
