Buy Crypto- Markets
Futures- Spot
- Copy Trade
- Earn
- More
SlowMist Cosine: GMX-related fork projects need to avoid similar security risks as GMX v1
By: odaily.com|2025/07/10 21:01:40
0
Share
Odaily News Yu Xian, the founder of SlowMist, posted on the X platform that GMX-related fork projects need to pay attention to similar security risks. He said that the fundamental reason why GMX was stolen for $42 million last night was that GMX v1 would immediately update the global short average price (globalShortAveragePrices) when processing short positions, and this global average price would directly affect the calculation of the total asset size (AUM), which would lead to the manipulation of the GLP token price. The attacker took advantage of this design flaw and enabled the timelock.enableLeverage feature (a necessary condition for creating large short orders) when executing orders through Keeper. By re-entering, he successfully created a large short position to manipulate the global average price, so as to artificially raise the GLP price in a single transaction and profit through redemption operations.
You may also like
Huang Renxun's Latest Podcast: Will NVIDIA Reach $1 Trillion? Will the Number of Programmers Increase Instead of Decrease? How to Deal with AI Anxiety?
Hashpower will determine everything; human work will only be restructured, not disappear
Besides Resolv Hack, This DeFi Vulnerability Type Has Occurred Four Times
17 minutes, 100k turned into 25M.
Trump Cries Peace, $1.5 Billion Dash | Rewire News Evening Brief
In the first 15 minutes of trading, $1.5 billion in futures trades have already taken place
From x402 to MPP: Cloudflare's crucial vote, will it go to Coinbase or Stripe?
Cloudflare is both building walls and opening windows. It provides both blocking tools and paid access tools. They decide what is kept out, what is allowed in, and under what conditions it can enter.
BlackRock CEO issues annual open letter: The wave of tokenization has arrived, and we will lead this trend
Rebuild capitalism that belongs to everyone.
When Backpack backstabs the community
Once a fundamental rift in trust appears, the cost that Backpack must pay to repair it is likely far more expensive than the profits previously "harvested" through service fees.
When gold is no longer a safe haven, and Bitcoin continues to panic
The whole world is waiting for the Strait of Hormuz to reopen. Why not guess which type of asset will return to pre-war levels first?
Trump, the World's Largest Oil Trader
No matter the outcome, he will not lose money.
If the US and Iran have not reached an agreement in 5 days, what other cards does Trump have?
A $100 Brent implies an approximate 30-40% "strike probability".
Tether Whale Dumps £12 Million, Backing Crypto’s ‘British Trump’
In the US, the crypto industry's big-money push to back Trump and reclaim regulatory control has already played out. In the UK, the same script is unfolding once again.
Ethereum Foundation Post: Rethinking the Division of Work Between L1 and L2 to Build the Ultimate Ethereum Ecosystem
Five years in the making, the Ethereum Foundation has updated the L1 and L2 ecosystem positioning and overarching guidance.
Two Major Prediction Market Platforms Unite Rarely, What Is the Story Behind This New Fund?
When Klashi's early employees went out to raise funds, the two CEOs chose to appear together on the investor list.
Dragonfly Partners: Most agents will not engage in autonomous trading, how can crypto payments prevail?
Although the scale of the agent economy will be very large, the proportion of agents actually conducting transactions will not be that high.
US AI Startup Goes All In on Chinese Mega-Model | Rewire News Morning Brief
The open-source ecosystem and manufacturing data form a dual circulation, allowing progress towards the cutting edge even under chip constraints
Trump Lies Again: A "Five-Day Pause" Psyop, How Wall Street, Bitcoin, and Polymarket Insiders Synced Uposciogen
Five days from now, the market will once again face Trump's "final deadline." Will this be the real endgame, or just another round of back-and-forth?
When a Token Becomes Labor, People Become the Interface
In 2023, having a Card is king. In 2026, having a Token is king.
Ceasefire News Leaked Ahead of Time? Large Polymarket Bets on Outcome Before Trump's Tweet
Minutes before Trump's market-moving social media post, S&P 500 futures and crude oil futures also saw abnormal trading volume.
BlackRock CEO's Annual Shareholder Letter: How is Wall Street Using AI to Keep Profiting from National Pension Funds?
AI is creating enormous wealth, but wealth distribution and risk exposure are replaying in a familiar pattern
Huang Renxun's Latest Podcast: Will NVIDIA Reach $1 Trillion? Will the Number of Programmers Increase Instead of Decrease? How to Deal with AI Anxiety?
Hashpower will determine everything; human work will only be restructured, not disappear
Besides Resolv Hack, This DeFi Vulnerability Type Has Occurred Four Times
17 minutes, 100k turned into 25M.
Trump Cries Peace, $1.5 Billion Dash | Rewire News Evening Brief
In the first 15 minutes of trading, $1.5 billion in futures trades have already taken place
From x402 to MPP: Cloudflare's crucial vote, will it go to Coinbase or Stripe?
Cloudflare is both building walls and opening windows. It provides both blocking tools and paid access tools. They decide what is kept out, what is allowed in, and under what conditions it can enter.
BlackRock CEO issues annual open letter: The wave of tokenization has arrived, and we will lead this trend
Rebuild capitalism that belongs to everyone.
When Backpack backstabs the community
Once a fundamental rift in trust appears, the cost that Backpack must pay to repair it is likely far more expensive than the profits previously "harvested" through service fees.
App