ChainCatcher reports that, according to the GoPlus Chinese community, the prediction market platform Polymarket was hacked due to a design flaw in the synchronization mechanism between off-chain and on-chain transaction results in its order system.
The attacker manipulated nonces to cause on-chain matched transactions to be canceled or invalidated before settlement, while off-chain records remained valid, leading to API false positives, affecting trading bots like Negrisk and causing user losses. The attack process is as follows: 1. The attacker submits or matches large reverse trades with market-making bots on Polymarket’s off-chain order book. 2. The attacker constructs transactions with forged or duplicate nonces or exploits on-chain nonce competition, ensuring the on-chain transaction reverts. 3. Polymarket’s API returns “Trade Successful” to the bot before on-chain confirmation, causing the bot to believe the position has been hedged, while the on-chain state has not yet changed. 4. The attacker then exploits the exposed direction by executing a real on-chain transaction, achieving “risk-free” profit. 5. Since the revert occurs on the blockchain layer, Polymarket’s fees do not explode, making the attack cost manageable and sustainable. GoPlus recommends users pause automated trading tools, verify on-chain transaction statuses, strengthen wallet security, and closely monitor official Polymarket announcements.
Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to
Disclaimer.
Related Articles
Iran's crackdown on Gulf countries' pressure on the United States is counterproductive; multiple countries may retaliate against Iran
Iran's recent airstrikes on Gulf countries have sparked tensions with the United States, potentially prompting Gulf nations to unite in resistance and strengthen collective self-defense. The Gulf Cooperation Council held an emergency meeting, clearly defining red lines, demonstrating that Iran's attacks have actually deepened solidarity among the nations.
GateNews17m ago
Kalshi: Supports trading price fluctuations of Rolex, Omega, and other watch brands
Foresight News reports that Kalshi has tweeted support for trading price fluctuations of watches such as Rolex, Omega, Cartier, and Tudor.
GateNews43m ago
Anonymous Trader Bets $25,676 on Iran Closing Strait of Hormuz by March 31
Gate News bot message, approximately one hour ago, an anonymous wallet was created and placed a bet of $25,676 on Iran closing the Strait of Hormuz by March 31. Following this transaction, the odds have increased to 77%.
GateNews1h ago
Federal Ruling Raises Risk for Polymarket, Kalshi in Nevada
A federal judge has returned Nevada's civil enforcement action against prediction markets Kalshi and Polymarket to state court, increasing the risk of restrictions on their operations amid growing state regulatory pressure.
TheNewsCrypto3h ago
Kalshi "Haminin Abdication" $50 million contract sparks controversy! CEO issues a call: Reject death arbitrage
Kalshi recently caused controversy due to the death news of Hameini, leading to a surge of funds into related prediction contracts, which resulted in settlement chaos and a trading halt. Although Kalshi refunded users with a net loss of approximately $2.2 million, the platform's promotional activities were criticized and prompted U.S. lawmakers to call for investigations into similar assassination-related contracts. Polymarket also faced controversy, as the settlement of certain contracts angered users and raised suspicions of insider trading.
区块客4h ago
Polymarket China, Iran "Information Battlefield": Over $500 million in bets, mysterious accounts enter precisely, sparking insider allegations
With the US and Israel conducting airstrikes on Iran, the prediction platform Polymarket has become an instant market, with trading volume exceeding $500 million, attracting a large number of traders. Profiters and losers coexist, and allegations of insider trading have also emerged, sparking debates over market transparency and ethics. This event highlights the advantages and disadvantages of prediction markets.
区块客4h ago
