SlowMist Cosine: GMX-related fork projects need to avoid similar security risks as GMX v1
By: odaily.com|2025/07/10 21:01:40
0
Share
Odaily News Yu Xian, the founder of SlowMist, posted on the X platform that GMX-related fork projects need to pay attention to similar security risks. He said that the fundamental reason why GMX was stolen for $42 million last night was that GMX v1 would immediately update the global short average price (globalShortAveragePrices) when processing short positions, and this global average price would directly affect the calculation of the total asset size (AUM), which would lead to the manipulation of the GLP token price. The attacker took advantage of this design flaw and enabled the timelock.enableLeverage feature (a necessary condition for creating large short orders) when executing orders through Keeper. By re-entering, he successfully created a large short position to manipulate the global average price, so as to artificially raise the GLP price in a single transaction and profit through redemption operations.
You may also like
Capital Markets: How will independent agents obtain financing?
Agents are becoming real companies: signing contracts, opening accounts, taking orders, and sharing profits. When ten thousand such companies are operating simultaneously, who will lend to them? How do they obtain financing?
Morning News | AEON completes $8 million Pre-Seed round financing led by YZi Labs; Goldman Sachs liquidates XRP and Solana ETF holdings in Q1; Strategy increased its holdings by 24,869 BTC last week
Overview of Important Market Events on May 18
Cross-border payment giant Wise lands on Nasdaq
Wise's listing on Nasdaq is not just a relocation of its stock market; it is also a repositioning of a cross-border payment company transitioning from a low-cost remittance tool to a global financial services network.
a16z Crypto: How should crypto entrepreneurs understand the CLARITY Act?
On May 14, the U.S. Senate Banking Committee passed the CLARITY Act with bipartisan support. The act clarifies the division of responsibilities between the SEC and CFTC in the cryptocurrency sector, providing a legitimate path for blockchain networks to issue and operate tokens.
Hyperliquid has been sued by two major traditional exchanges
CME and ICE joined forces to go to the U.S. Congress and CFTC to complain, demanding strict regulation of the cryptocurrency derivatives platform Hyperliquid.
Dialogue with Lead Bank Founder Jackie: American Banks Re-embrace Crypto
Excellent crypto companies are not those that are "best at circumventing regulations," but those that are "best at evolving in collaboration with regulations."
Vitalik: What we need to do is not to fight against AI, but to create a sanctuary
What is truly scarce is not computing power, but people who are willing to think proactively and retain sovereignty.
Morning News | VanEck and Grayscale submitted BNB ETF amendments on the same day; BlackRock discusses investing billions of dollars in SpaceX's IPO; Michael Saylor releases Bitcoin Tracker information again
Overview of Important Market Events on May 17
Crypto ETF Weekly | Last week, the net outflow of Bitcoin spot ETFs in the United States was $995 million; the net outflow of Ethereum spot ETFs in the United States was $255 million
Avenir Group solidifies its position as the largest Bitcoin ETF institutional holder in Asia, ranking first in the region for eight consecutive seasons.
This Week's News Preview | The Federal Reserve Releases the Last FOMC Minutes of the "Powell Era"
Highlights of the week from May 18 to May 24.
The ambition of "one account trading global assets": How does CoinUp.io break down asset barriers to become an industry dark horse?
Create a diversified financial ecosystem through collaboration between CEX and public chains.
How long will it take for the GPU futures market when computing power is commoditized?
Will computing power be the next major commodity? Examining the GPU futures market from five dimensions: it is still too early to talk about an explosion; the real breakthrough variable lies within the wave of open-source models and inference demand.
Harvard University loses $150 million in cryptocurrency! Has completely liquidated Ethereum and significantly reduced its Bitcoin ETF positions
In just two quarters, Harvard's public holdings in crypto assets fell from a peak of $443 million to about $117 million.
BNB Chain releases a research report exploring the migration path of BSC to post-quantum cryptography
The report explores the specific performance and implementation path impacts of replacing traditional blockchain cryptography with anti-quantum methods, including the use of ML-DSA-44 as a transaction signature scheme and the use of pqSTARK aggregated verifier consensus signatures.
After the number of developers was halved: Crypto is not dead, it has just handed over talent to AI
The trust, coordination, and verification issues encountered in the scaling of AI will ultimately require the mechanism design capabilities accumulated by the crypto industry to resolve.
"JUST 6th Anniversary x GasFree Super Carnival Month" is here: Enjoy "0" Gas transfer freedom and share a prize pool of 10,000 USDT
The total prize pool for this grand event reaches 10,000 USDT, covering multiple gameplay options such as the GasFree activation challenge, the exclusive prize pool for the pizza festival, the JUST 6th anniversary lucky koi, and knowledge competitions.
The two survival structures of market makers and arbitrageurs
This article will discuss the characteristics of their risk exposure and explain their differences.
Blockchain Capital Partner: Most people's understanding of on-chain economy is narrow
In the author's view, the most astonishing things in the blockchain space have yet to be created. Flash loans give us a glimpse, but this is just the tip of the iceberg.
Capital Markets: How will independent agents obtain financing?
Agents are becoming real companies: signing contracts, opening accounts, taking orders, and sharing profits. When ten thousand such companies are operating simultaneously, who will lend to them? How do they obtain financing?
Morning News | AEON completes $8 million Pre-Seed round financing led by YZi Labs; Goldman Sachs liquidates XRP and Solana ETF holdings in Q1; Strategy increased its holdings by 24,869 BTC last week
Overview of Important Market Events on May 18
Cross-border payment giant Wise lands on Nasdaq
Wise's listing on Nasdaq is not just a relocation of its stock market; it is also a repositioning of a cross-border payment company transitioning from a low-cost remittance tool to a global financial services network.
a16z Crypto: How should crypto entrepreneurs understand the CLARITY Act?
On May 14, the U.S. Senate Banking Committee passed the CLARITY Act with bipartisan support. The act clarifies the division of responsibilities between the SEC and CFTC in the cryptocurrency sector, providing a legitimate path for blockchain networks to issue and operate tokens.
Hyperliquid has been sued by two major traditional exchanges
CME and ICE joined forces to go to the U.S. Congress and CFTC to complain, demanding strict regulation of the cryptocurrency derivatives platform Hyperliquid.
Dialogue with Lead Bank Founder Jackie: American Banks Re-embrace Crypto
Excellent crypto companies are not those that are "best at circumventing regulations," but those that are "best at evolving in collaboration with regulations."
Customer Support:@weikecs
Business Cooperation:@weikecs
Quant Trading & MM:bd@weex.com
VIP Program:support@weex.com
