GMX Exploiter Starts Returning $40M in Stolen Crypto After Bounty Deal

491
SHARES
1.4k
VIEWS


The attacker who exploited the GMX v1 decentralized change (DEX) and stole $40 million in crypto started returning the stolen funds after sending an onchain message promising to return the crypto. 

In an onchain message flagged by blockchain safety agency PeckShield, the hacker wrote that the funds will probably be returned. “Okay, funds will probably be returned later,” the exploiter wrote in an onchain message, accepting the bounty supplied by the GMX crew. 

Hacker begins returning stolen crypto

Virtually an hour later, the hacker began returning the crypto stolen from the assault. On the time of writing, the tackle labeled GMX Exploiter 2 had returned about $9 million in Ether (ETH) to the Ethereum tackle specified by the GMX crew in an onchain message. 

PeckShield flagged that the attacker returned about $5.5 million in FRAX tokens to the GMX crew. After some time, the hacker returned one other $5 million in FRAX tokens to the GMX tackle. 

On the time of writing, about $20 million in property had been returned to GMX.

The exploit on Wednesday targeted a liquidity pool on GMX v1, the primary iteration of the perpetual buying and selling platform deployed on Arbitrum.

The attacker drained varied crypto property from the platform after exploiting a design flaw to govern the worth of GLP tokens.

An onchain message from the GMX exploiter promising to return the funds. Supply: Arbiscan

GMX supplied a $5 million bounty to the attacker 

In an X put up, the GMX crew recognized the talents of the hacker and supplied a bounty of $5 million for the return of the funds stolen in the course of the assault.

The crew promised that the quantity could be categorized as a white hat bounty that the hacker may freely spend as quickly because the funds have been returned. 

“You’ve efficiently executed the exploit; your talents in doing so are evident to anybody wanting into the exploit transactions,” GMX wrote. “The white hat bug bounty of $5 million continues to be accessible.”

The GMX crew stated that this is able to permit the hacker to take away the dangers related to spending stolen funds. The crew even supplied to offer proof of the supply of funds ought to the hacker require it. 

In an onchain message, the GMX crew additionally told the hacker they’d pursue authorized motion in 48 hours if the funds weren’t returned.

Within the message, the crew stated the hacker may take 10% of the stolen funds as a white hat bounty reward so long as 90% of the crypto was returned to the addresses they specified. 

Onchain message from the GMX crew despatched to the GMX exploiter. Supply: Arbiscan

Associated: Brazil’s central bank service provider hacked, $140M stolen

Journal: Coinbase hack shows the law probably won’t protect you — Here’s why