Security Breach on Thunder Terminal Leads to Losses of $240,000
Thunder Terminal, an on-chain trading platform, experienced a significant security compromise resulting in unauthorized access to 114 wallets connected to its network. The breach occurred due to a hack on a third-party service used by Thunder Terminal. Within just nine minutes, the attacker made suspicious withdrawals from Thunder wallets, leading to losses of 86.5 Ether and 439 Solana, equivalent to approximately $240,000.
Exploit Details and User Wallet Security
The exploit began at 12:11:47 UTC when the attacker gained access to a MongoDB connection URL, enabling them to carry out withdrawals using session tokens. Thunder Terminal assured users that their private keys and wallets were not directly compromised. As the platform’s architecture does not retain private keys, direct access to user wallets was not possible.
Immediate Response and Compensation
Upon discovering the illicit actions, Thunder Terminal promptly halted the exploit within nine minutes. They reassured affected users that any lost payments would be fully reimbursed. Additionally, they offered a compensation package including 0% fees and $100,000 in platform credits. Thunder Terminal has also engaged with the Federal Bureau of Investigation and is implementing enhanced security measures like two-factor verification for withdrawals.
Hacker’s Ransom Demand Raises Data Breach Concerns
The hacker issued a statement questioning the safety of user information despite Thunder Terminal’s claims. They demanded fifty Ether (approximately $110,000) as ransom for deleting all user data. This demand raises concerns about the extent of the data breach and adds complexity to the case.
Legal Measures and Commitment to User Protection
If the exploiter fails to comply with Thunder Terminal’s demands, the platform intends to pursue legal action through the United States court system. However, they remain open to negotiations for the return of user funds. Thunder Terminal’s proactive approach in addressing both security and legal aspects showcases their dedication to protecting users and implementing ethical procedures in cybersecurity vulnerabilities.
Hot Take: Thunder Terminal Faces Security Breach and Swiftly Responds
Thunder Terminal, an on-chain trading platform, experienced a significant security breach resulting in losses of $240,000. Despite the breach, Thunder Terminal assured users that their private keys and wallets were not directly compromised. The platform took immediate action to halt the exploit within minutes and offered full reimbursement for any lost payments. Furthermore, Thunder Terminal engaged with law enforcement agencies and is implementing additional security measures. The hacker’s ransom demand raises concerns about the extent of the data breach. Thunder Terminal remains committed to user protection by considering legal action if necessary. This incident highlights the importance of robust security measures in the crypto industry.
By
By
By
By
By