Essential Insights
-
Hacker Returns $40.5 Million: The hacker who stole approximately $42 million from GMX returned nearly all funds, including $10.49 million in FRAX and $32 million in ETH.
-
Exploitation Method: The breach, identified as a re-entrancy attack, exploited vulnerabilities in GMX’s smart contracts, allowing the hacker to manipulate token balances.
-
GMX’s Response: GMX offered a 10% bounty for the return of funds under thr threat of no legal action, which prompted the hacker to initiate the return.
- Impact on GMX Protocol: The incident did not affect GMX V2, which lacks the identified vulnerability, and the GMX token has recovered, showing a 13% increase post-incident.
GMX Hacker Returns Stolen $40 Million, Accepts $5M Bounty
Less than 48 hours after stealing approximately $42 million in cryptocurrencies from GMX, a decentralized trading platform, the hacker has started returning the funds. According to PeckShield, an on-chain analytics firm, the individual returned at least $40.5 million in various crypto assets, including ether (ETH) and Legacy Frax Dollar (FRAX).
The hacker exploited a vulnerability in GMX’s smart contracts to execute a re-entrancy attack. This flaw allowed the hacker to manipulate contract functions, leading to incorrect balance calculations. As a result, they inflated the price of GLP, the liquidity provider token for GMX.
After the breach, the hacker transferred numerous assets, including Wrapped Bitcoin (WBTC) and DAI, from Arbitrum to Ethereum. They then converted most of the funds to 11,700 ETH. In response to the incident, GMX offered a 10% white hat bounty, promising legal immunity for the return of stolen assets.
Today, the hacker accepted this bounty. They first returned $10.49 million in FRAX to the GMX Security Committee. Subsequently, they returned the remaining funds, converted to ETH, in batches. Notably, due to a rise in ether’s price, the $32 million returned was valued at $35 million. The hacker benefited from a $3 million profit and collected a bounty of roughly $4.5 million.
In light of these events, GMX clarified that its V2 protocol remained secure and unaffected by the breach. The team has lifted previous restrictions on liquidity tokens for GMX V2 across Arbitrum and Avalanche. Following the incident, the GMX token also rebounded, rising more than 13% today.
The actions of the hacker, while initially damaging, highlight a pathway for addressing vulnerabilities in blockchain technology. Events like this underscore the importance of robust security measures and can ultimately drive innovation in decentralized finance.
Continue Your Tech Journey
Learn how the Internet of Things (IoT) is transforming everyday life.
Access comprehensive resources on technology by visiting Wikipedia.
Disclaimer
This content is for informational and entertainment purposes only and does not constitute financial or investment advice. Cryptocurrency is highly speculative and carries significant risk, including the potential loss of your entire investment. Do not make financial decisions based on this information. Consult a licensed financial advisor before investing. This site does not offer, sell, or advise on cryptocurrency, securities or other regulated financial products in compliance with SEC and applicable laws. Please do your own research and seek professional advise.
CryptoV1
