Binance CEO Changpeng Zhao has said that he believes there were “wide spread API key leaks” from trading-bot platform 3Commas.

This speculation arose on social media on Wednesday, and was later confirmed by a 3Commas spokesperson. The leak was first discovered in October, when API keys were used to conduct unauthorized trades for DMG trading pairs.

3Commas said at the time that the keys were probably obtained from a third-party phishing attack or hack, rather than being taken from the company itself.

In response to the incident, 3Commas has asked that Binance, Kucoin and other supported exchanges revoke all of the keys that were connected to 3Commas.

The company has also implemented new security measures and is conducting a full investigation, involving law enforcement.