Crypto trading bot provider 3Commas is investigating unauthorized trades on some user accounts after a security incident. The firm received reports from users who had reset their passwords and discovered unauthorized trades. Although only a few accounts were compromised, 3Commas is now on "heightened alert." The affected accounts mostly did not have two-factor authentication (2FA) enabled. In response, the company has implemented new password resetting measures and disabled API connections after a user resets their password. Users are advised to enable 2FA and change their passwords regularly.