3Commas Leak Exposes Over 100,000 APIs, CEO Confirms

Share This Post

For a while now, 3Commas users have been posting on social media about a possible breach that led to their API keys being leaked. This resulted in unauthorized and unusual trading patterns on users’ exchange accounts, in most cases, in a bid to pump and dump coins. 3Commas had so far denied all of the rumors saying there was no breach but with irrefutable evidence now staring them in the face, the crypto trading platform has taken responsibility for the first time.

How It Started

Popular on-chain sleuth ZachXBT took to his Twitter account to share some damning evidence that had been shared with him. In the screenshots shared with his more than 340,000 followers, someone claimed to have had access to more than 100,000 API keys leaked from 3Commas, which he eventually shared with Zach.

Zach explained that he had gone on to verify the veracity of these claims by checking the API keys and multiple people in a group created for those who had their 3Commas API keys leaked had confirmed that their keys were in fact in the database that had been shared with Zach.

In a follow-up tweet, Zach posted a letter that the sender called a “Late Christmas Gift” in which they claim that there was not a breach. Rather the information had been sold to them by the staff of the 3Commas team.

A more alarming revelation was the fact that this person or group of people claim to have even more API keys. Apparently, they plan to publicly release the complete database of over 100,000 API keys. Thankfully, they plan to remove any personal or identifying information from the database in a bid to protect people.

3Commas Finally Acknowledges The Leak

In light of the exposure provided by the ZachXBT thread, the 3Commas team has taken responsibility for the data leak for the first time. Founder and CEO Yuriy Sorokin took to Twitter to acknowledge the authenticity of the claims. The CEO explained that they had been investigating an inside job but were unable to determine that the leak was from a staff member.

Interestingly, Sorokin explains that the small number of technical employees who had access to the data had been stripped of their access on Nov. 19, which means they had known about the leak for at least a month. But 3Commas had continued to gaslight users, accusing them of falling for phishing scams and asking them to go to exchanges when the problem had come from them all along.

Crypto total market cap chart from TradingView.com (3Commas)

“3Commas finally acknowledged the leak but the damage had already been done. For weeks they have been blaming its users and accepting zero responsibility,” ZachXBT said. Make sure to never give incompetent clowns like  @3commas_io your business ever again.”

Customers and exchanges have been advised to revoke all API keys connected to the 3Commas platform. As for 3Commas, Sorokin said: “We have implemented new security measures and will not stop there; we are launching a full investigation involving law enforcement.”

Read Entire Article
spot_img
- Advertisement -spot_img

Related Posts

The Year Of Solana: 2024 Sees Global Crypto Love Surge Nearly 40%

Solana (SOL) has emerged as a winner in the digital asset landscape as it captured the title of being the most popular blockchain ecosystem in 2024, according to the latest ranking of CoinGecko

Bitcoin’s Surge Could Just Be The Beginning Of A Sustained Rally: Tom Lee

The post Bitcoin’s Surge Could Just Be The Beginning Of A Sustained Rally: Tom Lee appeared first on Coinpedia Fintech News Fundstrat Head of Research Tom Lee has recently highlighted that

Bitwise: US Bitcoin Reserve Speculations Propel Crypto Market Gains

Recent findings from Bitwise’s Weekly Crypto Market Compass for Week 47, 2024, reveal an upbeat trajectory for cryptocurrency markets, with bitcoin leading the charge Its performance has

Breaking : Binance Introduces New Stablecoin With 19.55% APY

The post Breaking : Binance Introduces New Stablecoin With 1955% APY appeared first on Coinpedia Fintech News Binance in its latest announcement has revealed that it has launched the BFUSD

BlackRock’s IBIT Options Set To Begin Tomorrow: Nasdaq Head Of ETP Listings

The post BlackRock’s IBIT Options Set To Begin Tomorrow: Nasdaq Head Of ETP Listings appeared first on Coinpedia Fintech News BlackRock’s iShares Bitcoin Trust (IBIT) options are set to begin

Bitcoin Transaction Volume Reveals Retail Investors Are Coming – Details

Bitcoin has entered a brief consolidation phase after reaching new all-time highs last week, following an aggressive price surge that captured the market’s attention The rally came on the heels of