{"id":88741,"date":"2023-12-27T10:15:49","date_gmt":"2023-12-27T08:15:49","guid":{"rendered":"https:\/\/forklog.com\/en\/?p=88741"},"modified":"2025-09-13T19:54:24","modified_gmt":"2025-09-13T16:54:24","slug":"thunder-terminal-hacked-for-190000","status":"publish","type":"post","link":"https:\/\/forklog.com\/en\/thunder-terminal-hacked-for-190000\/","title":{"rendered":"Thunder Terminal hacked for $190,000"},"content":{"rendered":"<p>The decentralized trading platform Thunder Terminal faced an exploit, through which the attacker withdrew 86.5 ETH (about $190,000 at the time of writing).<\/p>\n<p><script async src=\"https:\/\/telegram.org\/js\/telegram-widget.js?22\" data-telegram-post=\"investigations\/81\" data-width=\"100%\"><\/script><\/p>\n<p>The incident drew the attention of an on-chain sleuth operating under the handle ZachXBT in his Telegram channel. According to him, the hacker <a href=\"https:\/\/etherscan.io\/tx\/0xd1867cff438dabb777ac161d0c0a5e3663d8b4a79231c25f90aed10556a13f8f\">\u043f\u0435\u0440\u0435\u0432\u0435\u043b<\/a> funds through the Railgun ecosystem.<\/p>\n<p>Subsequently, Thunder&#8217;s representatives issued a statement noting that private keys were not affected.<\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\">No one&#8217;s private keys are compromised.<\/p>\n<p>Only 114 wallets out of over 14,000 were affected.<\/p>\n<p>Funds are safe going forward. We stopped the attack in <9 minutes. <a href=\"https:\/\/t.co\/BPzeAg4cz8\">https:\/\/t.co\/BPzeAg4cz8<\/a><\/p>\n<p>\u2014 Thunder (@ThunderTerminal) <a href=\"https:\/\/twitter.com\/ThunderTerminal\/status\/1739813779976982946?ref_src=twsrc%5Etfw\">December 27, 2023<\/a><\/p><\/blockquote>\n<p> <script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p>&#8220;Only 114 wallets out of more than 14,000 were affected. Funds are safe. We stopped the attack in under nine minutes,&#8221; according to the platform&#8217;s post.<\/p>\n<\/blockquote>\n<p>In a separate <a href=\"https:\/\/x.com\/ThunderTerminal\/status\/1739843739202556322?s=20\">\u043e\u0442\u0447\u0435\u0442\u0435<\/a>, Thunder said the exploit occurred through withdrawal requests that the server considered authorized due to a session-token leak. The team also <a href=\"https:\/\/twitter.com\/ThunderTerminal\/status\/1739843741761094047\">\u043f\u043e\u0434\u0442\u0432\u0435\u0440\u0434\u0438\u043b\u0430<\/a> losses of about 86.5 ETH and 439 SOL (roughly $47,800).<\/p>\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p>&#8220;All stolen funds will be returned in full, and affected users will be offered a 0% fee and $100,000 in lending,&#8221; the project team added.<\/p>\n<\/blockquote>\n<p>Meanwhile, in an on-chain write-up <a href=\"https:\/\/etherscan.io\/tx\/0x6aae3869ef165c46a7611769644c029ded78cd2c050bbca85a5b17850cf7f10d\">\u043d\u0430\u0437\u0432\u0430\u043b<\/a> Thunder&#8217;s posts &#8220;absolute lies.&#8221; He warned that all user data are at his disposal.<\/p>\n<p>Earlier on December 16, unknown <a href=\"https:\/\/forklog.com\/en\/news\/nft-trader-loses-about-3-million-in-hack\">attacked<\/a> the NFT Trader P2P platform&#8217;s old smart contracts and drained non-fungible tokens worth $3 million.<\/p>\n<p>Subsequently the Telcoin project <a href=\"https:\/\/forklog.com\/en\/news\/telcoin-project-loses-1-3-million-due-to-exploit\">lost $1.3 million<\/a> due to the exploit, after which the TEL token&#8217;s price fell by 40%.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>The decentralized trading platform Thunder Terminal faced an exploit, resulting in the attacker withdrawing 86.5 ETH (~$190,000).<\/p>\n","protected":false},"author":1,"featured_media":88742,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"select":"1","news_style_id":"1","cryptorium_level":"","_short_excerpt_text":"","creation_source":"","_metatest_mainpost_news_update":false,"footnotes":""},"categories":[3],"tags":[44,1424],"class_list":["post-88741","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news-and-analysis","tag-cybercrime","tag-protocols"],"aioseo_notices":[],"amp_enabled":true,"views":"22","promo_type":"1","layout_type":"1","short_excerpt":"","is_update":"","_links":{"self":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts\/88741","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/comments?post=88741"}],"version-history":[{"count":1,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts\/88741\/revisions"}],"predecessor-version":[{"id":88743,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts\/88741\/revisions\/88743"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/media\/88742"}],"wp:attachment":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/media?parent=88741"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/categories?post=88741"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/tags?post=88741"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}