3Commas Breach: Crypto Community Demands Refund For Victims

• A hacker leaked 3Commas‘ API keys in a Dec. 28 Twitter thread, which was verified by 3Commas CEO Yuriy Sorokin.
• Binance CEO Changpeng ‚CZ‘ Zhao advised users to disable 3Commas‘ access immediately.
• Crypto community members have asked the compromised trading platform to refund victims of the API hack.

A data breach on the popular trading platform 3Commas has left users feeling insecure and demanding refunds. On Dec. 28, a hacker leaked 3Commas’ API keys in a Twitter thread, which was verified by 3Commas CEO Yuriy Sorokin. Sorokin confirmed that the data published by the hacker was factual, and that the platform has reached out to exchanges like Binance, KuCoin, and others to revoke the keys connected to 3Commas.

Binance CEO Changpeng ‚CZ‘ Zhao advised users to disable its access immediately, citing that he was „reasonably sure there are widespread API key leaks from 3Commas.“ Sorokin apologized for his firm’s handling of the situation and said they have implemented new security measures and involved law enforcement agencies in launching a full investigation.

In the wake of the hack, the crypto community has asked 3Commas to refund victims of the API key breach. Victim Coinmamba tweeted, “With all the drama, where’s the refund, 3commas? We have all suffered losses due to your negligence.” Other users echoed the sentiment and said they were unable to access their funds, while some reported that the hacker was still exploiting their API keys.

3Commas has yet to respond to the community’s call for a refund, instead focusing on improving their security measures. The platform said it has implemented a new two-factor authentication system and has enabled a “user-level security audit log” to improve the transparency of its operations and protect users’ funds.

Given the amount of money lost due to the breach, users are likely to remain adamant in their pursuit of a refund from 3Commas. In the meantime, users should take extra precautions to protect their funds and data by disabling their API access on 3Commas and other crypto platforms.