{"id":61346,"date":"2023-10-11T12:40:47","date_gmt":"2023-10-11T16:40:47","guid":{"rendered":"https:\/\/coinscreed.com\/staging\/?p=61346"},"modified":"2023-10-11T12:42:37","modified_gmt":"2023-10-11T16:42:37","slug":"3commas-fixes-security-flaws-strengthens-protocols","status":"publish","type":"post","link":"https:\/\/coinscreed.com\/staging\/3commas-fixes-security-flaws-strengthens-protocols\/","title":{"rendered":"3Commas Fixes Security Flaws, Strengthens Protocols"},"content":{"rendered":"\n<p>3Commas, a top platform for <a href=\"https:\/\/coinscreed.com\/staging\/crypto-trading-bots-pros-and-cons.html\">crypto trading bots<\/a>, rapidly fixed recent security issues affecting some users' accounts.<\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img fetchpriority=\"high\" decoding=\"async\" width=\"1024\" height=\"576\" src=\"https:\/\/coinscreed.com\/staging\/wp-content\/uploads\/2023\/10\/croc_1697035850509-1024x576.jpg\" alt=\"3Commas Fixes Security Flaws, Strengthens Protocols\" class=\"wp-image-61348\" srcset=\"https:\/\/coinscreed.com\/staging\/wp-content\/uploads\/2023\/10\/croc_1697035850509-1024x576.jpg 1024w, https:\/\/coinscreed.com\/staging\/wp-content\/uploads\/2023\/10\/croc_1697035850509-300x169.jpg 300w, https:\/\/coinscreed.com\/staging\/wp-content\/uploads\/2023\/10\/croc_1697035850509-768x432.jpg 768w, https:\/\/coinscreed.com\/staging\/wp-content\/uploads\/2023\/10\/croc_1697035850509-18x10.jpg 18w, https:\/\/coinscreed.com\/staging\/wp-content\/uploads\/2023\/10\/croc_1697035850509-750x422.jpg 750w, https:\/\/coinscreed.com\/staging\/wp-content\/uploads\/2023\/10\/croc_1697035850509-1140x641.jpg 1140w, https:\/\/coinscreed.com\/staging\/wp-content\/uploads\/2023\/10\/croc_1697035850509.jpg 1200w\" sizes=\"(max-width: 1024px) 100vw, 1024px\" \/><figcaption class=\"wp-element-caption\">3Commas Fixes Security Flaws, Strengthens Protocols<\/figcaption><\/figure>\n\n\n\n<p>A security warning from 3Commas was published on October 8 and was most recently updated. They thoroughly summarized the occurrence and the steps they took to make it right.<\/p>\n\n\n\n<p>A small number of customers reported illegal transactions on their accounts after changing their passwords, which is how the breach was discovered. In response, 3Commas acted quickly, opening an internal inquiry and putting extra security measures in place.<\/p>\n\n\n\n<p>It was determined following a thorough investigation that there had been a security breach leading to unauthorized access to particular user account information. <\/p>\n\n\n\n<p>The site clarified that just a small percentage of accounts had their passwords reset and that customers who had not enabled <a href=\"https:\/\/www.bing.com\/search?q=3Commas+Fixes+Security+Flaws%2C+Strengthens+Protocols&qs=n&form=QBRE&sp=-1&lq=0&pq=3commas+fixes+security+flaws%2C+strengthens+protocols&sc=7-51&sk=&cvid=15CAC19C9D594E8785E30C3FD26D7128&ghsh=0&ghacc=0&ghpl=\" target=\"_blank\" rel=\"noopener\">two-factor authentication<span class=\"wpil-link-icon\" title=\"Link goes to external site.\" style=\"margin: 0 0 0 5px;\"><svg width=\"24\" height=\"24\" style=\"height:16px; width:16px; fill:#000000; stroke:#000000; display:inline-block;\" viewBox=\"0 0 24 24\" version=\"1.1\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" xmlns:svg=\"http:\/\/www.w3.org\/2000\/svg\"><g id=\"wpil-svg-outbound-7-icon-path\" fill=\"none\" clip-path=\"url(#clip0_31_188)\">\r\n                            <path d=\"M9.16724 14.8891L20.1672 3.88908\" stroke-linecap=\"round\"\/>\r\n                            <path d=\"M13.4497 3.53554L20.5208 3.53554L20.5208 10.6066\" stroke-linecap=\"round\" stroke-linejoin=\"round\"\/>\r\n                            <path d=\"M17.5 13.5L17.5 16.26C17.5 17.4179 17.5 17.9968 17.2675 18.4359C17.0799 18.7902 16.7902 19.0799 16.4359 19.2675C15.9968 19.5 15.4179 19.5 14.26 19.5L7.74 19.5C6.58213 19.5 6.0032 19.5 5.56414 19.2675C5.20983 19.0799 4.92007 18.7902 4.73247 18.4359C4.5 17.9968 4.5 17.4179 4.5 16.26L4.5 9.74C4.5 8.58213 4.5 8.0032 4.73247 7.56414C4.92007 7.20983 5.20982 6.92007 5.56414 6.73247C6.0032 6.5 6.58213 6.5 7.74 6.5L11 6.5\" stroke-linecap=\"round\"\/>\r\n                        <\/g>\r\n                        <defs>\r\n                            <clipPath id=\"clip0_31_188\">\r\n                                <rect fill=\"white\" height=\"24\" width=\"24\"\/>\r\n                            <\/clipPath>\r\n                        <\/defs><\/svg><\/span><\/a> (2FA) were largely affected by this attack. <\/p>\n\n\n\n<p>Importantly, private information like API or account passwords remained unaltered. According to their blog post, 3Commas actively sought to remedy the matter. <\/p>\n\n\n\n<p>They updated their password reset process and added security measures by immediately shutting down all API connections after a password reset. 3Commas reassured users that their services were unaffected despite the security issue. <\/p>\n\n\n\n<p>With steadfast dedication, the platform pledged to continue being watchful while the incident inquiry progressed. In light of these incidents, 3Commas admonished its customers to activate 2FA if they still need to do so on their accounts. <\/p>\n\n\n\n<p>The site also advises password changes on a regular basis as a smart practice for boosting account security. However, as of the time of writing, 3Commas has yet to respond to a prompt request for comment.<\/p>\n\n\n\n<p>Following a similar security breach in which a person gained 100,000 user-owned API keys and leaked 10,000 of them on X, 3Commas faced criticism. Significant exchanges, including <a href=\"https:\/\/coinscreed.com\/staging\/fca-lists-over-140-non-authorized-crypto-exchanges.html\">KuCoin, Binance, and Coinbase<\/a>, were associated with the keys.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>3Commas, a top platform for crypto trading bots, rapidly fixed recent security issues affecting some users&#8217; accounts. A security warning from 3Commas was published on October 8 and was most recently updated. They thoroughly summarized the occurrence and the steps they took to make it right. A small number of customers reported illegal transactions on [&hellip;]<\/p>\n","protected":false},"author":43,"featured_media":61348,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[21],"tags":[11876,16712],"class_list":["post-61346","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news","tag-3commas","tag-security-issue"],"jetpack_featured_media_url":"https:\/\/coinscreed.com\/staging\/wp-content\/uploads\/2023\/10\/croc_1697035850509.jpg","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/posts\/61346","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/users\/43"}],"replies":[{"embeddable":true,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/comments?post=61346"}],"version-history":[{"count":0,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/posts\/61346\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/media\/61348"}],"wp:attachment":[{"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/media?parent=61346"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/categories?post=61346"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/tags?post=61346"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}