Thunder Terminal, an on-chain trading platform, recently experienced a security breach resulting in a significant loss of approximately $240,000. The breach occurred when a hacker gained unauthorized access to a MongoDB connection URL, allowing them to retrieve session tokens and execute withdrawals on behalf of users.
Thunder Terminal took immediate action by revoking all session tokens and transaction signing access to mitigate the attack. Fortunately, no private keys or wallets were compromised during the breach.
The total losses incurred amounted to 86.5 Ether and 439 Solana, equivalent to $240,000, within a nine-minute timeframe. However, Thunder Terminal reassured users that only 114 out of more than 14,000 wallet addresses were affected, and funds were secure moving forward.
The attacker transferred the stolen funds to Railgun, a privacy-focused protocol enabling anonymous cryptocurrency swaps and private transactions. Despite initial claims by Thunder Terminal that funds were safe and refunds would be processed, the hacker entity sent an on-chain message alleging possession of all user data and demanding 50 ETH for its deletion.
Thunder Terminal has reported the incident to the FBI and expressed a willingness to negotiate with the hacker for the return of user funds. If necessary, they are prepared to pursue legal action to the fullest extent of the US judicial system.
This News Article was automatically generated by Bob the Bot (AI)
| Information | Details |
|---|---|
| Geography | North America |
| Countries | |
| Sentiment | negative |
| Relevance Score | 1 |
| People | None |
| Companies | Railgun, Thunder Terminal, FBI, MongoDB |
| Currencies | Ethereum, Solana |
| Securities | None |
