Addressing the recent 3Commas API Leak
Published by Laith Saket on
Addressing the recent 3Commas API Leak
At AYMBot® security and privacy is of the utmost importance
29th December 2022
All AYMBot® account API keys are SECURE
All AYMBot® account API keys DO NOT GRANT WITHDRAWAL RIGHTS
All AYMBot® accounts & API are #SAFU
On 29th of December 2022, an anonymous Twitter user garnered around 100,000 API keys belonging to 3Commas users and published them online. The hacker even suggested that he will publish the rest of the keys, in the next couple of days.
Since then, 3Commas have admitted to the occurrence of the hack and have requested that all crypto-exchanges (including Binance & Kucoin) supported by 3Commas revoke all the keys that were connected to 3Commas.
In light of the news surrounding this incident, we wish to assure all our clients that we consider your account security and the safety of your funds the very highest priority. As such, AYMBot® employs the latest, safest and most stringent security measures to ensure that any data related to AYMBot® clients is safely secured.
Furthermore, we wish to emphasise the fact that AYMBot® is non-custodial. We do not have access to withdraw funds from any user’s accounts. AYMBot® is programmed only to accept API permission that allows it to trade on the user’s behalf.
In fact, AYMBot® will immediately reject any attempt to connect it via APIs which contain withdrawal permission. In order to safeguard users who may accidentally enable Withdrawals, AYMBot® will instantly detect this error and will not store these API’s, permitting the user instead, with an error message informing stating that the “Withdrawals Permission” must be DISABLED in order for the API’s to be acceptable.
As such, APIs connected to AYMBot®cannot be used to compromise user funds in any way. In the very unlikely event that API keys are hacked, the malicious party will not be able to withdraw any funds since this right is not granted to begin with. The absolute worst that can happen is that trading would be halted for a short while.
This notice is intended to reassure all our clients that their accounts, data and funds are safe with AYMBot®.
We hope everyone is staying safe during these conditions and wish you a Happy New Year!
Happy Safe Trading,
AYMBot®