简体中文
繁體中文
English
Pусский
日本語
ภาษาไทย
Tiếng Việt
Bahasa Indonesia
Español
हिन्दी
Filippiiniläinen
Français
Deutsch
Português
Türkçe
한국어
العربية
Abstract:Thunder Terminal, a prominent on-chain crypto trading platform, grapples with a recent security breach resulting in the loss of substantial funds, prompting swift action and raising concerns about user data safety in the cryptocurrency landscape.
Thunder Terminal, an on-chain crypto trading platform, encountered a security breach today, resulting in the loss of 86.5 ETH (approximately $192,000) and 439 SOL (around $47,800). However, the platform assured users that no private keys were compromised and has taken measures to secure their funds.
Introduced by Eversify Labs in late 2022, Thunder Terminal facilitates swift transactions across various blockchain networks like Ethereum, Solana, Avalanche, and Arbitrum. It positions itself as an alternative to Telegram trading bots such as Unibot.
As per Thunder Terminals statement on X (previously known as Twitter), the incident impacted only 114 out of over 14,000 wallets on the platform. The company ensured the security of funds going forward and claimed to have swiftly halted the attack within nine minutes. Additionally, they intend to fully reimburse the lost funds and provide affected users with 0% fees and $100,000 in credits each.
However, the attacker disputed Thunder Terminals assertions in an on-chain message, claiming possession of user data and demanding 50 ETH as ransom for its deletion. This assertion introduces complexity, raising concerns about user data safety.
Thunder Terminals incident report identified unauthorized withdrawal requests as the exploit's cause, executed due to leaked session tokens through a MongoDB connection URL exploited by the attacker.
Addressing the breach, Thunder Terminal emphasized that only less than 1% of its users‘ wallets were affected. They confirmed that none of their team members’ accounts were compromised, and the breach did not stem from internal errors.
Jackson, Thunder Terminal‘s representative, confirmed the FBI’s active involvement in investigating the incident. The service is scheduled to resume today, with enhanced security measures in place and ongoing efforts for a comprehensive security audit. Refunds for affected users are also in the pipeline, as per Jacksons internal update.
This incident underscores the persistent cybersecurity challenges faced by on-chain trading platforms and emphasizes the critical need for robust security measures in the swiftly evolving cryptocurrency sector. Thunder Terminal‘s rapid response and commitment to reimbursing affected users demonstrate the platform’s dedication to upholding user trust and security in the aftermath of the breach.
Cryptocurrency exchanges, frequently targeted by hackers, have encountered similar incidents in recent months, including breaches at HTX, Bitrue, Gdac, and Deribit, resulting in substantial losses.
Disclaimer:
The views in this article only represent the author's personal views, and do not constitute investment advice on this platform. This platform does not guarantee the accuracy, completeness and timeliness of the information in the article, and will not be liable for any loss caused by the use of or reliance on the information in the article.
Bitfinex hacker Ilya Lichtenstein was sentenced to 5 years for stealing 120K Bitcoins as the cryptocurrency soars past $93K amid bullish market trends.
The United Kingdom is advancing its approach to cryptocurrency regulation with a specific focus on stablecoins and the potential exemption of staking services. British authorities are preparing new legislative measures to be implemented by December, aiming to bolster the nation’s appeal as a hub for digital asset innovation.
PayPal's PYUSD stablecoin can now transfer across Ethereum and Solana, enhancing flexibility for users through a LayerZero cross-chain integration.
The scammer behind a $73 million pig butchering scheme has pleaded guilty to defrauding victims through fake cryptocurrency investments.