Thunder Terminal Secures User Funds After Foiling Exploit, Hacker Demands Ransom for Data

The on-chain trading platform Thunder Terminal recently experienced a significant security breach, which put user funds at risk. However, the platform promptly responded to the exploit, reassuring users that their private keys and wallets had not been compromised. Despite this, the hacker disputes these claims and has demanded an additional ransom for user data. In this article, we will delve into the incident, examining Thunder Terminal’s response, the hacker’s assertions, the breach of Thunder’s data, the refund plan, the hacker’s activities, and providing an overview of Thunder Terminal’s features and functionality.

Incident Report: User Funds Secured

In the aftermath of the exploit, Thunder Terminal has released an incident report, assuring users that their private keys and wallets have not been compromised. The platform reiterates that only 114 out of 14,000 wallets were affected. Thunder Terminal further guarantees that all affected users will be fully refunded, in addition to receiving 0% fees and $100,000 in platform credits as a gesture of goodwill.

Hacker’s Claims and Ransom Demand

Despite Thunder Terminal’s assurances, the hacker vehemently claims that the platform’s statements are false. The attacker issued a demand for a 50 ETH ($110,000) ransom for the allegedly affected user data. The attacker left a memo on Etherscan, asserting that Thunder Terminal’s assurances were nothing but lies.

Exploitation of MongoDB and Breach of Thunder’s Data

The incident report revealed that the exploitation of the MongoDB company eight days prior resulted in the breach of Thunder Terminal’s data. This breach exposed vulnerabilities in Thunder Terminal’s security protocols and allowed unauthorized access to user information. The extent of the compromised data remains uncertain.

Thunder’s Response and Refund Plan

While Thunder Terminal did not explicitly address the hacker’s ransom demand, it stated that the platform does not have access to users’ private keys, eliminating the possibility of the attacker gaining access to them. To ensure heightened security, Thunder Terminal pledged to implement extra measures. The platform also expressed a willingness to negotiate with the hacker in hopes of recovering the stolen funds.

Hacker’s Activities and Use of Stolen Funds

Etherscan data shed light on the hacker’s actions, revealing that the attacker’s wallet address sent a total of 86.3 ETH to the Railgun protocol, which enables users to anonymize their transactions. This move aims to obfuscate the origin of the stolen funds, making it challenging to trace their final destination.

Thunder Terminal’s Features and Functionality

Thunder Terminal is an innovative trading platform designed for seamless trading across various blockchain networks such as Ethereum, Solana, Avalanche, and Arbitrum. It provides users with efficient and quick trade execution, supporting their investment strategies across multiple networks. The platform’s compatibility with these networks allows users to explore diverse investment opportunities and capitalize on market movements.

The security breach experienced by Thunder Terminal underlines the persistent threat faced by cryptocurrency platforms. However, Thunder Terminal’s prompt and transparent response demonstrates its commitment to safeguarding user funds. The platform has taken immediate steps to enhance security and is actively engaging with the hacker in a bid to retrieve the stolen funds. Moving forward, Thunder Terminal emphasizes its determination to protect user assets and strengthen its security infrastructure, pledging to implement further measures to ensure the safety and trust of its users.

Explore more

Can Jamf Beacon Bridge the Mac Security Expertise Gap?

The rapid proliferation of Apple hardware across enterprise networks has created a distinct disparity between the aesthetic preference of employees and the technical readiness of the security teams responsible for protecting them. As organizations increasingly integrate these devices into high-stakes workflows, the lack of specialized macOS knowledge within traditional IT departments becomes a glaring vulnerability. Jamf Beacon emerges as a

Aflac Japan Data Breach Impacts 4.4 Million Customers

Dominic Jainy is a veteran in the tech space, navigating the complex intersection of cybersecurity and artificial intelligence. With years of experience protecting high-stakes data through machine learning and blockchain, he offers a unique vantage point on why even the biggest insurance titans remain vulnerable to sophisticated extortion groups. Today, we delve into the recent security catastrophe at Aflac Japan,

Power Availability Dictates EMEA Data Center Growth

The unrelenting expansion of high-performance computing and artificial intelligence workloads across the European, Middle Eastern, and African markets has transformed energy procurement into the primary competitive differentiator for infrastructure developers today. While geographic proximity to end-users remains a relevant factor, the sheer scale of current deployments necessitates a pivot toward regions where the electrical grid can support multi-hundred megawatt campuses

How Does ARToken Bypass Microsoft 365 MFA?

A typical office worker receives a routine notification from what appears to be a legitimate SharePoint site, asking for a quick verification code to view a shared document. This seemingly harmless request arrives as an alphanumeric code on a professional Microsoft page, inviting the user to “verify” an identity. Because the interaction occurs entirely within official Microsoft domains, the employee

Is Your Oracle EBS Data Safe From Active Cyber Attacks?

Introduction Enterprise resource planning systems serve as the digital backbone of global commerce, yet hundreds of these critical platforms currently sit exposed to predatory actors on the open internet. Recent data reveals that nearly 950 Oracle E-Business Suite instances are directly reachable via the web, bypassing traditional security perimeters. This exposure coincides with the active exploitation of vulnerabilities that grant