Thunder Terminal, an on-chain trading platform, successfully prevented a potential exploit that targeted 114 wallets on its platform, saving approximately $240,000 in user funds. The hacker behind the attack, however, disputes Thunder’s claims and is demanding an additional ransom for user data.
Thunder Terminal reported that the exploit occurred due to an attacker gaining access to a “MongoDB connection URL,” enabling unauthorized withdrawals on behalf of users. The incident, which took place over just nine minutes, resulted in losses of 86.5 Ether and 439 Solana, totaling $240,000. Thunder clarified that no private keys or wallets were compromised during the incident.
Hacker’s Response and Ransom Demand
Contrary to Thunder’s assurances, the hacker left a memo on Etherscan, alleging that Thunder’s statements were “all lies.” The attacker is demanding a 50 ETH ($110,000) ransom for the purportedly affected data, claiming to have complete user data and threatening to delete it unless the ransom is paid.
Despite the hacker’s claims, Thunder reiterated that only 114 out of 14,000 wallets were compromised. The platform reassured affected users that they would be fully refunded, in addition to receiving 0% fees and $100,000 in platform credits. Thunder expressed its commitment to security and stated it would take extra measures to safeguard user funds.
Thunder Terminal’s Response and Security Measures
While Thunder did not directly address the hacker’s ultimatum, it emphasized that it does not have access to users’ private keys, making it impossible for the attacker to gain such access. Thunder expressed openness to negotiations with the hacker to retrieve the stolen funds and pledged to enhance its security protocols.
Etherscan data revealed that the hackers’ wallet address sent a total of 86.3 ETH to the Railgun protocol, a service allowing users to anonymize transactions. Thunder Terminal, launched by Eversify Labs in late 2022, is a trading platform facilitating quick trades across various blockchain networks, including Ethereum, Solana, Avalanche, and Arbitrum. Positioned as a competitor to Telegram trading bots like Unibot, Thunder Terminal aims to cater to users seeking efficient trading options across multiple blockchain platforms.