The trading robot platform 3Commas allows users to manage accounts of multiple exchanges through the same interface through API (application programming interface). In the past few months, there have been frequent reports of user API key leaks, leading to unauthorized transactions. 3Commas officials have repeatedly stated that the problem occurred because users entered the phishing website. However, it has now been admitted that the data was stolen by hackers.

3Commas admits key leak

3Commas CEO Yuriy Sorokin said today (29) that they had seen the hacker's message and confirmed that the information in the file was correct. To take immediate action, they have asked Binance, Kucoin, and other supported exchanges to cancel all key authorizations with 3Commas.

Still, the 3Commas chief executive said that while internal issues were possible, no evidence had been found in the investigation.

He said only a small group of technicians had access to the infrastructure, but 3Commas had revoked their access on November 19.

Since then, 3Commas has implemented new security measures and launched a full investigation including enforcement actions. They are sorry for the seriousness of the matter and hope to continue to provide transparent information to users in the future.

1. Statement from 3Commas:

We saw the hacker’s message and can confirm that the data in the files is true. As an immediate action, we have asked that Binance, Kucoin, and other supported exchanges revoke all the keys that were connected to 3Commas.

— Yuriy Sorokin (@YS_3Commas) December 28,

This article 3Commas CEO admitted that the API key was leaked and hackers did obtain the information first appeared on Chain News ABMedia.