Binance Alerts Users of API Leak on 3Commas, Advises Disabling Keys

Binance CEO Changpeng Zhao has said that he believes there were “wide spread API key leaks” from trading-bot platform 3Commas.

This speculation arose on social media on Wednesday, and was later confirmed by a 3Commas spokesperson. The leak was first discovered in October, when API keys were used to conduct unauthorized trades for DMG trading pairs.

Mamba, there is almost no way for us to be sure users didn’t steal their own API keys. The trades were done using API keys you created. Otherwise we will just be paying for users to lose their API keys. Hope you understand.

— CZ 🔶 BNB (@cz_binance) December 9, 2022

3Commas said at the time that the keys were probably obtained from a third-party phishing attack or hack, rather than being taken from the company itself.

PSA

3Commas API leak has been published, if you haven't already REMOVE YOUR API KEY pic.twitter.com/yEvrxyWBIq

— db (@tier10k) December 28, 2022

In response to the incident, 3Commas has asked that Binance, Kucoin and other supported exchanges revoke all of the keys that were connected to 3Commas.

The company has also implemented new security measures and is conducting a full investigation, involving law enforcement.

TagsBinanceBlockchainCrypto