Binanza CEO Changpeng Zhao says he is “pretty sure” that the API keys of trading bot platform 3Commas have been leaked. A 3Commas representative has since confirmed that the company received a message from a hacker and that the leaked data is real.
I’m reasonably sure there are API key leaks spread by 3Commas. If you have ever entered an API key into 3Commas (from any exchange), disable it immediately.
Remain #LINE.
— CZ 🔶 Binance (@cz_binance) December 28, 2022
Remove immediately
Zhao’s message is therefore to warn people to remove the keys in question as soon as possible. “If you ever enter an API key into 3Commas (from any exchange), delete it immediately. Stay safe,” Zhao said of the vulnerability.
If your keys are linked to 3Commas, it is possible that hackers are controlling your funds. In principle, they cannot steal goods directly, but indirectly they can. By first buying tokens with your wallets that have almost no volume and then selling them at much higher prices.
This is the dangerous thing about sharing API keys on a platform like Binance. It seems like a safe and interesting idea, until the platform behind the trading bot is hacked. Now that’s the case, so much so that many people’s keys are no longer safe. Let’s hope the damage is minor.
Investigation launched
3Commas is investigating and has previously discovered that the API keys of the already fallen FTX have been used for unauthorized operations. The 3Commas team had already been informed on October 20th. At the time, they indicated that the keys weren’t leaked through 3Commas itself, but likely through a third party.
I firmly believe @level10k is correct here, not the official 3paragraph (BS) answer. https://t.co/gV4DxVfxUZ
— CZ 🔶 Binance (@cz_binance) December 28, 2022
Now even 3Commas itself confirms that the keys have been leaked. “To take immediate action, we have asked Binance, KuCoin and other exchanges to revoke all keys associated with 3Commas,” a representative said:
3Comma declaration:
1) We have seen the hacker’s message and can confirm that the data in the files is true. As an immediate action, we requested Binance, Kucoin and other supported exchanges to revoke all keys that were linked to 3Commas. pic.twitter.com/ZMuzCqeF1j
— 3commas (@3commas_io) December 28, 2022
“Only a small part of the technical staff had access to the infrastructure and after November 16th we have already taken steps to completely block this access. New security measures have since been implemented and it won’t stop there. We have launched a full investigation.”