1 min read

The FBI is reportedly probing 3Commas after API keys leaked on Twitter

Alina BÎZGĂ

January 04, 2023

Ad One product to protect all your devices, without slowing them down.
Free 90-day trial
The FBI is reportedly probing 3Commas after API keys leaked on Twitter

The FBI is purportedly investigating the data breach and subsequent financial losses affecting users of 3Commas, an Estonian-based crypto trading bot platform, CoinDesk reported, without naming its sources.

In late December, the 3Commas data breach made headlines after an anonymous Twitter user posted 10,000 API keys allegedly stolen from the crypto platform.

Although 3Commas denied it suffered any security issues in an initial statement, the company confirmed the breach in a tweet on Dec. 29, 2022.

“We have seen the hacker's message and can confirm that the data in the files is true,” the tweet reads. “As an immediate action, we have requested that Binance, Kucoin and other supported exchanges revoke all keys that were connected to 3Commas.”

“Since then, we have implemented new security measures, and we will not stop there; we are launching a full investigation in which law enforcement will be involved,” the company added.

The threat actor who leaked the API keys also claimed that the 3Commas keys were sold by someone working within the company. 3Commas, however, denied the claims, insisting that “no evidence of an inside job was found.”

Unfortunately, users of the crypto trading platform have already lost over $20 million.

Crypto news recently revealed that approximately 60 users of 3Commas got together and urged police to intervene and investigate how their financial assets went missing.

“Since becoming aware of the supposed hacker's Pastebin post, we have requested that Binance, KuCoin and other supported exchanges revoke all keys that were connected to 3Commas,” CEO Yuriy Sorokin said. “We strongly recommend every user to reissue an API key they have currently connected to an exchange.”

Has your personal information been exposed in a data breach? Find out now with Bitdefender’s Digital Identity Protection.

tags


Author



Right now

Top posts

Threat actors impersonate Canadian gas retailer to deliver malicious OneNote phishing campaign, Bitdefender Labs warns

Threat actors impersonate Canadian gas retailer to deliver malicious OneNote phishing campaign, Bitdefender Labs warns

January 26, 2023

2 min read
Spammers phish eager vacationers with travel-themed lures, Bitdefender Antispam Lab warns

Spammers phish eager vacationers with travel-themed lures, Bitdefender Antispam Lab warns

January 19, 2023

4 min read
Enhance your cyber resilience and privacy on Computer Security Day in four easy steps

Enhance your cyber resilience and privacy on Computer Security Day in four easy steps

November 29, 2022

2 min read
How to monitor your online privacy during your Thanksgiving trip

How to monitor your online privacy during your Thanksgiving trip

November 22, 2022

3 min read
Just your yearly dose of Black Friday spam: Cybercrooks get ahead of the game to steal shoppers’ info

Just your yearly dose of Black Friday spam: Cybercrooks get ahead of the game to steal shoppers’ info

November 16, 2022

6 min read
Bitdefender VPN in 2022: the new, the improved, and the soon-to-be

Bitdefender VPN in 2022: the new, the improved, and the soon-to-be

November 14, 2022

5 min read

FOLLOW US ON

SOCIAL MEDIA


You might also like

QNAP Rolls Out Urgent Patch to Fix SQL Injection Flaw in NAS Devices QNAP Rolls Out Urgent Patch to Fix SQL Injection Flaw in NAS Devices
Filip TRUȚĂ

January 31, 2023

1 min read
Code-Signing Certificates Stolen in GitHub Breach Code-Signing Certificates Stolen in GitHub Breach
Vlad CONSTANTINESCU

January 31, 2023

1 min read
Latvia says Russian hackers tried to phish its Ministry of Defence Latvia says Russian hackers tried to phish its Ministry of Defence
Graham CLULEY

January 30, 2023

2 min read