As we usher in the festive season, the sphere of digital assets isn’t immune to the nefarious activities of exploiters. Recently, Thunder Terminal, an on-chain trading platform, suffered a significant blow, losing a total of $240,000. The platform’s team maintains that no private keys or wallets were violated, but the hacker contradicts this, demanding an extra ransom for user data.
Details of the Exploit
According to the incident report, Thunder Terminal’s losses totalled 86.5 Ether and 439 Solana, equating to $240,000, all within a nine-minute window. The unusual withdrawals from user wallets were first detected at 12:11 AM UTC on December 27. The attacker managed to access a “MongoDB connection URL,” which they used to extract session tokens and carry out withdrawals from users’ wallets.
Response to the Attack
Thunder Terminal acted swiftly, revoking all session token access and transaction signing, thus effectively implementing Thunder Terminal Attack Mitigation. The team reassured users that no private keys or wallets were compromised and that only 1% of wallets were affected. The losses incurred totalled 86.56 ETH and 439.12 SOL, amounting to approximately $240,000 in user funds.
The platform pledged to reimburse all lost funds and offer affected users 0% fees and $100,000 in credits. In addition, they have sought legal counsel and involved the FBI. A thorough technical audit of the on-chain trading system is currently in progress.
Future Security Measures
In a public statement, Thunder Terminal detailed its immediate actions, which include the introduction of two-factor authentication (2FA) for withdrawals and enhanced security measures related to session issuance. The platform expressed its intent to pursue the services used by the attacker and is open to negotiations with the exploiter, provided they return the user funds. In the absence of such cooperation, Thunder Terminal is prepared to seek legal redress to the maximum extent within the US judicial system.
Interestingly, 2023 saw a significant reduction of over 50% in hack volumes within the crypto industry, according to TRM Labs. The majority of these incidents, accounting for approximately 60%, were identified as infrastructure attacks. These involve the theft of private keys or compromise of seed phrases, where the culprits infiltrate fundamental elements of a cryptocurrency system to steal assets or manipulate trades.
However, enhanced security measures, increased law enforcement actions, and greater industry collaboration with exchanges, wallet providers, and blockchain networks have managed to mitigate the damage. According to De.FI, a Web3 security firm, this marks the first decline in stolen amounts since 2020. Their report revealed that approximately $2 billion in crypto was stolen by hackers through various cyberattacks and thefts throughout 2023.
For those interested in tracking the performance of their digital assets amidst these security challenges, the cryptoview.io application offers a comprehensive platform to monitor and manage your crypto portfolio.
Explore cryptoview.io now
