SlowMist Cosine: GMX-related fork projects need to avoid similar security risks as GMX v1
2 days ago
Odaily News Yu Xian, the founder of SlowMist, posted on the X platform that GMX-related fork projects need to pay attention to similar security risks. He said that the fundamental reason why GMX was stolen for $42 million last night was that GMX v1 would immediately update the global short average price (globalShortAveragePrices) when processing short positions, and this global average price would directly affect the calculation of the total asset size (AUM), which would lead to the manipulation of the GLP token price. The attacker took advantage of this design flaw and enabled the timelock.enableLeverage feature (a necessary condition for creating large short orders) when executing orders through Keeper. By re-entering, he successfully created a large short position to manipulate the global average price, so as to artificially raise the GLP price in a single transaction and profit through redemption operations.
最热快讯
资讯热榜
日榜
周榜
GMX hacker says stolen funds will be returned soon
CryptoQuant analyst: On-chain transaction volume has increased moderately, and there is no obvious sign of selling pressure in the market
Meme assets on LBank rose sharply, with VELVET, MOOMOO, ALTSOL, AINBSC, HYPER, DOLO, MANYU and others seeing the highest increase of 876%
Ark Invest sold $6.5 million of Coinbase shares and $5.8 million of Robinhood shares yesterday
The giant whale made a profit of more than 14.78 million US dollars by going long on HYPE with 5 times leverage
RESOLV rose above 0.2 USDT, a short-term increase of 20%
