If you have any of your exchange's API keys linked to their platform, disable or delete them because it appears they have been leaked and published online[1][2][3] (still to be confirmed).

This comes days after a group of traders reported losing funds[4].

[1] https://twitter.com/tier10k/status/1608186096411725826
[2] https://twitter.com/cz_binance/status/1608182790540902407
[3] https://www.coindesk.com/tech/2022/12/28/anonymous-twitter-user-leaks-alleged-3commas-api-database/
[3] https://twitter.com/zachxbt/status/1605235174970916864/photo/1

Not your keys not your coins. Give your API keys out and loose your coins. Seems about right.

But, it's yet another reason not to keep your funds on an exchange. And if for some reason you have to then never ever give anyone else access to it.

API keys sounds so technical and nice. Give us your username & password and use our phone number for your SMS 2FA just does not sound as good and technical.

-Dave

Been reading more and more on this, a lot of details are still a bit contradictory. But, it does look like an interesting ripoff / human view kind of thing.

The accounts were targeted a bit at random. They did not go after the 'high value' targets or the most active or anything like that. Those things would just scream hack / data leak.

They went after a bunch of random accounts (and a few big ones) which just. makes it look like something else. If you have access to 100 accounts and only go after 1 in the top 10 and 3 in the top 25 it makes it look a lot less obvious then going after the top 10 and running with the funds

Still, 3Commas should have been more proactive and people should not be using exchanges though other places with API keys. I'm truly impressed that it took this long for something like this to happen.

-Dave

Just stop using them forever.

They will be sued for sure and that will take a lot of their resources. They will likely lose and settle for millions of dollars to refund all affected users so they may as well stop their operation at that point. Nobody will ever trust them after lying for so long and keep putting the blame on users.

Of course they won't admit that its been an inside job, no one expected anything else from them. Not that is anyone believing them, especially since people warned them about losing money and instead taking those warnings seriously, they instead shifted blame to users and exchanges.

I'll give them that they might not be able to say due to legal issues. Even big places like Gemini did not say who leaked some data from their mailing lists just that it was leaked.
Massive liability issue. If *I know* that I did not leak it but, the only other person who had access was you still saying you did it is dangerous because if it was NOT leaked by you but rather by an undetected hack, or outright theft or..... There could actually be more backlash if they say "A" did it and they were wrong then just saying 'someone else'

I still don't believe it, but I can see the logic behind it.

-Dave