I have not sure how my node is compromise. I see a transaction that send out my SAT to someone wallet both on-chain and LN.
So, I decided to take down my current node and do full reset and create new seed.
But I want to look back what is going on and how it compromises.
One thing that I can think off is the ThunderHub is still under default password “moneyprintergobrrr” and I do port forwarding the port 3000 to via dynamic DNS service.
I trying to find the way to change the password of the ThunderHub but cannot find how to change it.
Can anyone help?