{"id":72134,"date":"2022-12-30T11:33:27","date_gmt":"2022-12-30T09:33:27","guid":{"rendered":"https:\/\/forklog.com\/en\/?p=72134"},"modified":"2025-09-08T13:06:57","modified_gmt":"2025-09-08T10:06:57","slug":"fbi-probes-3commas-api-key-leak-reports-say","status":"publish","type":"post","link":"https:\/\/forklog.com\/en\/fbi-probes-3commas-api-key-leak-reports-say\/","title":{"rendered":"FBI probes 3Commas API-key leak, reports say"},"content":{"rendered":"<p>US authorities have opened an investigation into the leak of API keys belonging to users of the algorithmic-trading platform for digital assets, 3Commas. CoinDesk reports this.<\/p>\n<p>According to the publication, representatives from the office of the <span data-descr=\"Federal Bureau of Investigation (US)\" class=\"old_tooltip\">FBI<\/span> in Cincinnati have contacted at least two clients of the service.<\/p>\n<p><a href=\"https:\/\/forklog.com\/en\/news\/changpeng-zhao-warns-of-api-key-leaks-on-3commas-platform\">obtained around 100,000 API keys<\/a>, linked to major exchanges such as Binance and KuCoin. The hacker claimed that the user data was sold to him by a platform employee.<\/p>\n<blockquote class=\"twitter-tweet\" data-lang=\"en\">\n<p lang=\"en\" dir=\"ltr\">3Commas Statement:<\/p>\n<p>1) We have seen the hacker&#8217;s message and can confirm that the data in the files is true. As an immediate action, we have requested that Binance, Kucoin and other supported exchanges revoke all keys that were connected to 3Commas. <a href=\"https:\/\/t.co\/ZMuzCqeF1j\">pic.twitter.com\/ZMuzCqeF1j<\/a><\/p>\n<p>\u2014 3Commas (@3commas_io) <a href=\"https:\/\/twitter.com\/3commas_io\/status\/1608226169400315904?ref_src=twsrc%5Etfw\">December 28, 2022<\/a><\/p><\/blockquote>\n<p> <script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p>\u00ab3Commas \u043f\u043e\u0434\u0447\u0435\u0440\u043a\u0438\u0432\u0430\u0435\u0442, \u0447\u0442\u043e \u0432 \u0445\u043e\u0434\u0435 \u0432\u043d\u0443\u0442\u0440\u0435\u043d\u043d\u0435\u0433\u043e \u0440\u0430\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u043d\u0438\u044f \u043d\u0435 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u043e \u043d\u0438\u043a\u0430\u043a\u0438\u0445 \u0434\u043e\u043a\u0430\u0437\u0430\u0442\u0435\u043b\u044c\u0441\u0442\u0432 \u0442\u043e\u0433\u043e, \u0447\u0442\u043e \u043a\u0442\u043e-\u043b\u0438\u0431\u043e \u0438\u0437 \u0441\u043e\u0442\u0440\u0443\u0434\u043d\u0438\u043a\u043e\u0432 3Commas \u043a\u0430\u043a\u0438\u043c-\u043b\u0438\u0431\u043e \u043e\u0431\u0440\u0430\u0437\u043e\u043c \u043f\u0440\u0438\u0447\u0430\u0441\u0442\u0435\u043d \u043a \u0430\u0442\u0430\u043a\u0430\u043c \u043d\u0430 \u0434\u0430\u043d\u043d\u044b\u0435 API\u00bb, \u2014 \u0437\u0430\u044f\u0432\u0438\u043b \u0441\u043e\u0443\u0447\u0440\u0435\u0434\u0438\u0442\u0435\u043b\u044c \u0438 CEO \u043a\u043e\u043c\u043f\u0430\u043d\u0438\u0438 \u042e\u0440\u0438\u0439 \u0421\u043e\u0440\u043e\u043a\u0438\u043d.<\/p>\n<\/blockquote>\n<p>\u041f\u043e \u0435\u0433\u043e \u0441\u043b\u043e\u0432\u0430\u043c, \u043d\u0430\u0438\u0431\u043e\u043b\u0435\u0435 \u0432\u0435\u0440\u043e\u044f\u0442\u043d\u044b\u043c \u0432\u0435\u043a\u0442\u043e\u0440\u043e\u043c \u0430\u0442\u0430\u043a\u0438 \u044f\u0432\u043b\u044f\u044e\u0442\u0441\u044f \u0444\u0438\u0448\u0438\u043d\u0433 \u0438\u043b\u0438 \u0432\u043d\u0435\u0434\u0440\u0435\u043d\u0438\u0435 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0433\u043e \u043a\u043e\u0434\u0430 \u0432 \u041f\u041e \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b. \u0421\u043e\u0431\u0441\u0442\u0432\u0435\u043d\u043d\u043e\u0435 \u0440\u0430\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u043d\u0438\u0435 \u043d\u0435 \u0432\u044b\u044f\u0432\u0438\u043b\u043e \u00ab\u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0430\u0446\u0438\u0438 \u043a\u043e\u0434\u0430 \u0438\u043b\u0438 \u043d\u0430\u0440\u0443\u0448\u0435\u043d\u0438\u0439 \u0441\u0438\u0441\u0442\u0435\u043c \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438\u00bb, \u043f\u043e\u0434\u0447\u0435\u0440\u043a\u043d\u0443\u043b \u0421\u043e\u0440\u043e\u043a\u0438\u043d.<\/p>\n<p><a href=\"https:\/\/forklog.com\/en\/news\/3commas-and-ftx-report-compromise-of-several-users-api-keys\">detected as early as October<\/a>. The attackers used the access to carry out unauthorized trades in users&#8217; accounts.<\/p>\n<p>Victims formed a group numbering about 60 people, according to CoinDesk. Earlier they contacted the U.S. Secret Service and other law enforcement agencies to determine where their funds went. The group\u2019s leader, Edmundo Pe\u00f1a, valued total losses at no less than $20 million.<\/p>\n<p>Earlier, after the October attack, FTX founder Sam Bankman-Fried urged the hackers to voluntarily <a href=\"https:\/\/forklog.com\/en\/news\/ftx-chief-assesses-damage-from-api-key-compromise-and-reaches-out-to-hackers\">return 95% of the stolen funds<\/a> to exchange users. Their losses exceeded $6 million.<\/p>\n<p>Follow ForkLog&#8217;s Bitcoin news on our <a href=\"https:\/\/telegram.me\/forklog\" target=\"_blank\" rel=\"nofollow noopener\">Telegram<\/a> \u2014 crypto news, rates and analytics.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>US authorities have opened an investigation into the leak of API keys belonging to users of the algorithmic-trading platform for digital assets, 3Commas. CoinDesk reports this.<\/p>\n","protected":false},"author":1,"featured_media":72135,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"select":"1","news_style_id":"1","cryptorium_level":"","_short_excerpt_text":"","creation_source":"","_metatest_mainpost_news_update":false,"footnotes":""},"categories":[3],"tags":[2313,1188,1323],"class_list":["post-72134","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news-and-analysis","tag-3commas-io","tag-data-breach","tag-investigations"],"aioseo_notices":[],"amp_enabled":true,"views":"12","promo_type":"1","layout_type":"1","short_excerpt":"","is_update":"","_links":{"self":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts\/72134","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/comments?post=72134"}],"version-history":[{"count":1,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts\/72134\/revisions"}],"predecessor-version":[{"id":72136,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts\/72134\/revisions\/72136"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/media\/72135"}],"wp:attachment":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/media?parent=72134"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/categories?post=72134"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/tags?post=72134"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}