3commas - NEWS POLITE

3Commas, the provider of automated crypto trading services, has warned its community members to be alert about their account-related notifications as cyber threats loom large over the platform. Over the weekend, the platform’s team decided to deploy some changes to its existing security system after some users complained of seeing unauthorised trades placed from their accounts. This hinted the platform that it could be under attack from crypto hackers. Passwords of these accounts were also reportedly reset, hinting at the potential hack attack.

A Cloud-based crypto trading platform, 3Commas allows its users to use its trading bots to stay on top of the game. The bot efficiently making trade-related decision based on real-time market stats. The platform founded in 2017, boasts of stellar customer feedback from its community that has over 100,000 entities as part of its.

Upon internal investigation, 3Commas found that this hack only affected a few user-accounts, and its operations on the otherwise large scale, remain safe and functional.

The platform has strongly advised all its users to enable two-factor authentication (2FA) in the backdrop of this incident.

“The security incident took place mainly affected customers who had not enabled 2FA. Please note that the data accessed did not include your API secret data and account passwords. In response to the few customer reports, we took immediate measures to address the situation,” the Estonia-based company said.

3Commas, in its official post, explained the security changes it has made to its system.

“We shifted the approach to password resets and deployed an additional functionality so that now, after passwords are reset, all API connections are disabled to provide an extra layer of security. In the meantime, our services are running normally, and we will continue to operate in a state of heightened alert,” the post said.

As of now, details about the finances that may have been stolen or relocated as part of this attack remain undisclosed.

This is not the first time however, that user accounts from 3Commas have been breached by notorious cyber hacking.

In October 2022, the API keys of 3Commas were leaked, that had resulted in the leaks of unauthorised trades on the accounts of the victims.

Hackers keep targeting the crypto sector because not only are crypto transactions largely untraceable, the lack of regulations to govern the sector also gives them loopholes to get ahead of law enforcement agencies.

In the last leg of September, Web3 firm Mixin Network was hacked, leading to losses worth $200 million (roughly Rs. 1,662 crore) from its account.

In fact, the funds stolen in crypto scams, hacks, and rug pulls breached the mark of $656 million (roughly Rs. 5,454 crore) during the first half of 2023, a report by Web 3.0 security firm Beosin said in July.

Affiliate links may be automatically generated – see our ethics statement for details.

Check out our Latest News and Follow us at Facebook

Original Source

The crypto sector, thriving in several parts of the world, was struck with several hack and scam attacks this year. Even a couple of days before the industrially quaky year of 2022 ends, news and warning around crypto crimes have made it to the headlines. This week, the private API keys of around 1,00,000 crypto users were leaked on public domains. The victims were all users of 3Commas, an Estonia-based crypto trading service. The incident added more stress to the already disturbed crypto sector that has drastically dropped down in valuation to a yearly low to $795 billion (roughly Rs. 65,87,830 crore).

3Commas lets users set up an automated feature that has bots initiate trades on third party exchanges like Binance, Coinbase, and KuCoin on behalf of the users.

An anonymous hacker, as confirmed by 3Commas, had been at work since October that reportedly resulted in a loss of user funds up to $12 million (roughly Rs. 100 crore) via unconsented transactions. These transactions were processed via 3Commas on exchanges like Binance and Coinbase.

Previously, the company was exploring if these unverified transactions were being triggered by phishing attacks.

1. Statement from 3Commas:

We saw the hacker’s message and can confirm that the data in the files is true. As an immediate action, we have asked that Binance, Kucoin, and other supported exchanges revoke all the keys that were connected to 3Commas.

— Yuriy Sorokin (@YS_3Commas) December 28, 2022

Several members of the crypto community, including Binance CEO Changpeng Zhao, shared awareness and safety suggestions for others.

I am reasonably sure there are wide spread API key leaks from 3Commas. If you have ever put an API key in 3Commas (from any exchange), please disable it immediately.

Stay #SAFU.

— CZ :large_orange_diamond: Binance (@cz_binance) December 28, 2022

My strong recommendation for all @3commas_io leak victims is to hire the lawyer ASAP

Link to leakage belowhttps://t.co/QRstmpwumF

Best documented lawsuits would win and you will have a chance for compensation

— Dyma Budorin :flag-ua: (@buda_kyiv) December 28, 2022

The incident comes in the backdrop of crypto crimes gaining more and more pace around the world.

US’ Federal Bureau of Investigation (FBI) has warned crypto investors there about a new technique of ongoing scams — called the ‘pig butchering’. In these instances, scammers get potential victims to move their investments to cryptocurrency. Once their digital wallet ‘fattens’, these scammers hack and steal the funds.

“Be very careful when you go on social media and dating apps and somebody starts developing a relationship with you, and wants you to start investing. Don’t get butchered,” Bitcoin.com quoted Frank Fisher, public affairs specialist at the FBI’s Albuquerque division, as saying.

Back in November, the authorities in the US reportedly claimed to have identified and confiscated seven domain names that were exploited in pig butchering scams.

In a recent report, Chainalysis claimed that the month of October has been the worst in terms of crypto-related crimes. The crypto sector lost over $718 million (roughly Rs. 5,890 crore) owing to such crimes.

Back-to-back hack attacks on the digital assets sector contributed heavily to how the market turned-out to reach its current low valuation of $795 billion (roughly Rs. 65,87,830 crore).

Glassnode, in its latest report, has claimed that most Bitcoin holders have moved their holdings to self-custodial crypto wallets. Glassnode has estimated that around 550,000 Bitcoin worth $9.2 billion (roughly Rs. 76,760 crore) have left crypto exchanges.

Affiliate links may be automatically generated – see our ethics statement for details.

Catch the latest from the Consumer Electronics Show on Gadgets 360, at our CES 2023 hub.

Check out our Latest News and Follow us at Facebook

Original Source

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.

Tag: 3commas

3Commas Tweaks Internal Security After Accounts of Some Users Were Compromised, Passwords Reset

Crypto Criminals Not on Holiday, Scams Like 3Commas and ‘Pig Butchering’ Continue to Strike