Pay attention to those fork projects, don't be careless. The fundamental reason for GMX's theft of $42 million last night was that GMX v1 would immediately update the global ShortAverage Prices when handling short positions, which would directly affect the calculation of total asset size (AUM), leading to manipulation of GLP token prices. Attackers exploit this design flaw by enabling the timelock.enable Leverage feature in Keeper during order execution (a necessary condition for creating large short positions), successfully creating large short positions through re-entry to manipulate the global average price, artificially raising GLP prices in a single transaction and profiting from redemption operations. Doing DeFi is really a high-risk business, and GMX is a very old decentralized perpetual trading platform. This time, we also hit a big hole, and the 10% white hat bounty strategy is unlikely to make attackers tempted