Happy Ending: Crypto Hacker Returns Funds From $42 | Crypto News
In a constructive development for the crypto neighborhood, the person accountable for the GMX exploit accepted the platform’s bounty and returned over $40 million value of belongings stolen from the project.
Crypto Hacker Takes $42 Million From GMX
On Friday, the latest GMX V1 exploit ended on a completely satisfied observe after the person accountable for the incident turned into a white-hat hacker. Perpetual and spot crypto exchange GMX misplaced over $40 million on Wednesday when an attacker exploited a vulnerability in the protocol’s first model on Arbitrum.
According to online studies, GMX V1’s vault contract had a vulnerability that allowed the attacker to manipulate the GLP token price through the system’s calculations.
Blockchain security firm SlowMist defined that “The root cause of this attack stems from GMX v1’s design flaw, where short position operations immediately update the global short average prices (globalShortAveragePrices), which directly impacts the calculation of Assets Under Management (AUM), thereby allowing manipulation of GLP token pricing.”
Through a reentrancy assault, they efficiently established large short positions to manipulate the worldwide average costs, artificially inflating GLP costs within a single transaction and profiting through redemption operations.
As a end result, roughly $42 million value of belongings, including Legacy Frax Dollar (FRAX), wrapped bitcoin (WBTC), wrapped ETH (WETH), and different tokens, have been transferred from the GLP pool to an unknown pockets.
The perpetual crypto exchange halted GMX V1’s trading and GLP’s minting and redeeming on both Arbitrum and Avalanche to forestall one other assault and shield customers’ funds. However, they clarified that the exploit was restricted to GMX’s V1 and its GLP pool. GMX V2, its markets, or liquidity swimming pools, and the GMX token weren’t affected and remained protected.
White-Hat Claims $5 Million Bounty
Following the incident, GMX despatched a message on-chain and on X offering a $5 million white-hat bounty to the attacker, claiming that their talents have been “evident to anyone looking into the exploit transactions.”
GMX’s workforce famous that returning the funds within the next 48 hours and accepting the bounty would enable the hacker to “spend the funds freely,” as a substitute of taking extra dangers to access them. They also vowed not to pursue any legal motion and to help the exploiter in offering proof of source for the funds if it’s ever required.
Today, the exploiter responded in an on-chain message, accepting the bounty and beginning the return course of. As Lookonchain reported, they initially returned $10.49 million value of FRAX on Friday morning.
Meanwhile, one other $32 million value of belongings had been swapped into 11,700 ETH, that are now valued at $35 million after the King of Altcoins’ price jumped to the $2,990 mark.
In the next hours, the hacker returned 10,000 ETH, value $30 million, holding only 1,700 ETH, valued at $5.2 million, as the bounty.
GMX later confirmed that the funds have now been safely returned and thanked the white-hat hacker for their actions, in the end giving a constructive flip to the incident.
Lastly, they knowledgeable customers that “contributors are working on a proposed distribution plan for presentation to the GMX DAO and will share more information shortly.”
Stay up to date with the newest trending crypto information! Visit our web site every day for the freshest Crypto information and content material, fastidiously curated to keep you knowledgeable.
