1. Statement from 3Commas:
We saw the hacker’s message and can confirm that the data in the files is true. As an immediate action, we have asked that Binance, Kucoin, and other supported exchanges revoke all the keys that were connected to 3Commas.
— Yuriy Sorokin (@YS_3Commas) December 28, 2022
If you are a victim – then it means that somehow your keys were leaked. Not from 3Commas, as otherwise, you would’ve seen millions of cases, not a hundred. browser extensions, stealers, and all kinds of malware are out there.
— Yuriy Sorokin (@YS_3Commas) December 23, 2022
I am reasonably sure there are wide spread API key leaks from 3Commas. If you have ever put an API key in 3Commas (from any exchange), please disable it immediately.
— CZ 🔶 Binance (@cz_binance) December 28, 2022