3Commas zanika, da bi člani osebja ukradli API ključe PlatoBlockchain Data Intelligence. Navpično iskanje. Ai.

3Commas zanika, da bi zaposleni ukradli ključe API

Časovni žig: 11. december 2022 5:00
slika

Crypto trading firm 3Commas has denied its employees’ stole user’s API keys, claiming that screenshots circulating on social media are fake and urging affected users to file police reports to stop the perpetrators from stealing their funds. 

V objavi na spletnem dnevniku, objavljeni 11. decembra, je soustanovitelj in izvršni direktor podjetja 3Commas Jurij Sorokin je dejal da ponarejeni posnetki zaslona dnevnikov Cloudflare krožijo po Twitterju in YouTubu, "da bi ljudi prepričali, da je v 3Commas ranljivost in da smo bili dovolj neodgovorni, da smo dovolili odprt dostop do uporabniških podatkov in dnevniških datotek." Domnevni posnetki zaslona nameravajo za prikaz, kako so bili strankini ključi API izpostavljeni na nadzorni plošči 3Commas na Cloudflare.

In an another blog post, on Dec. 10, Sorokin encouraged affected users to file a police report to get their exchange accounts frozen. “The faster this is done, the faster exchanges can freeze the accounts of the perpetrators to stop funds from being withdrawn and increase the likelihood that some, or all, of the funds may be returned to victims.”

Since the majority of crypto exchanges follow Know Your Customer standards, users are required to provide identity details to trade or withdraw funds. If affected users provided a police report, exchanges would be able to share this information with investigators, noted the company.

As poročali by Cointelegraph, a crypto trader who goes by CoinMamba on Twitter had his Binance account closed after he complained about lost funds. The leaked API key was tied to a 3Commas account. Both Binance and 3Commas deny any responsibility for the incident.

3Commas trdi, da je odkril dokaze o lažnem predstavljanju kot "dejavniku, ki prispeva" k krajam. Po to the company, the phishing attacks started in October, with bad actors trying different techniques. Sorokin stated:

»Imamo tudi trdne dokaze, da je lažno predstavljanje vsaj deloma prispeval dejavnik; tukaj smo objavili članek v spletnem dnevniku, v katerem so prikazana številna lažna spletna mesta 3Commas, ki so bila ustvarjena in nekatera še vedno živijo na internetu, kljub našim največjim prizadevanjem, da bi jih odstranili.«

Podjetje onemogoča povezave Exchange API, starejše od 90 dni.

Časovni žig:

Več od Cointelegraph