Alert! Thunder Terminal Under Attack!

Thunder Terminal, an on-chain crypto trading platform, encountered a security breach today, resulting in the loss of 86.5 ETH (approximately $192,000) and 439 SOL (around $47,800). However, the platform assured users that no private keys were compromised and has taken measures to secure their funds.

Introduced by Eversify Labs in late 2022, Thunder Terminal facilitates swift transactions across various blockchain networks like Ethereum, Solana, Avalanche, and Arbitrum. It positions itself as an alternative to Telegram trading bots such as Unibot.

As per Thunder Terminals statement on X (previously known as Twitter), the incident impacted only 114 out of over 14,000 wallets on the platform. The company ensured the security of funds going forward and claimed to have swiftly halted the attack within nine minutes. Additionally, they intend to fully reimburse the lost funds and provide affected users with 0% fees and $100,000 in credits each.

However, the attacker disputed Thunder Terminals assertions in an on-chain message, claiming possession of user data and demanding 50 ETH as ransom for its deletion. This assertion introduces complexity, raising concerns about user data safety.

Thunder Terminals incident report identified unauthorized withdrawal requests as the exploit's cause, executed due to leaked session tokens through a MongoDB connection URL exploited by the attacker.

Addressing the breach, Thunder Terminal emphasized that only less than 1% of its users‘ wallets were affected. They confirmed that none of their team members’ accounts were compromised, and the breach did not stem from internal errors.

Jackson, Thunder Terminal‘s representative, confirmed the FBI’s active involvement in investigating the incident. The service is scheduled to resume today, with enhanced security measures in place and ongoing efforts for a comprehensive security audit. Refunds for affected users are also in the pipeline, as per Jacksons internal update.

This incident underscores the persistent cybersecurity challenges faced by on-chain trading platforms and emphasizes the critical need for robust security measures in the swiftly evolving cryptocurrency sector. Thunder Terminal‘s rapid response and commitment to reimbursing affected users demonstrate the platform’s dedication to upholding user trust and security in the aftermath of the breach.

Cryptocurrency exchanges, frequently targeted by hackers, have encountered similar incidents in recent months, including breaches at HTX, Bitrue, Gdac, and Deribit, resulting in substantial losses.