The short answer:

A correctly configured AI trading bot is safe โ€” it cannot withdraw your funds, only trade them. The risk isn't the bot itself but how you set up the connection. Generate API keys with withdraw disabled, lock them to the bot's IP address, and use a non-custodial vendor. Do those three things and the worst-case outcome is bad trades, never a stolen balance.

What you're actually defending against

Before talking solutions, let's name the threats. There are three:

  1. The bot itself โ€” bug, malicious code, or rogue employee.
  2. The bot company being hacked โ€” attacker steals API keys.
  3. You โ€” phishing, weak password, or careless config.

The good news: with proper API key setup, threats #1 and #2 can only cause trade losses, not balance theft. Threat #3 is the one most users actually need to worry about.

API keys 101 โ€” what you're really granting

An exchange API key is like a hotel keycard with a list of rooms it can enter. When you create one, you tick boxes for what it's allowed to do. The standard options:

PermissionWhat it doesShould bot have?
ReadSee balances, prices, historyโœ… Yes
Spot TradingBuy/sell on the spot marketโœ… Yes
Margin / FuturesLeveraged positionsOnly if you use leverage
WithdrawMove funds OUT of the exchangeโŒ NEVER

The single line between safe and not safe is the Withdraw toggle. With it off, no one โ€” not the bot company, not a hacker who stole the key, not a rogue employee โ€” can move money out of your account. They can only execute trades.

Custodial vs. non-custodial โ€” the bigger question

Some bots are custodial โ€” they hold your funds on their platform. Examples: Pionex, certain copy-trading services. The pitch is simplicity, but the risk profile is fundamentally different. If the platform is hacked, drained, or goes bankrupt, your funds are at risk along with theirs.

Non-custodial bots โ€” including Prometheus AI โ€” never see your funds. The capital lives on your exchange account; the bot only places trades through API permissions you control and can revoke instantly.

"Not your keys, not your coins" applies to bots too. Non-custodial isn't paranoid โ€” it's the baseline standard for retail trading software in 2026.

The 60-second lockdown

Run this once on day one. Saves you 10x as much grief later.

  1. Enable 2FA on your exchange account (use an authenticator app, not SMS).
  2. Generate a fresh API key just for the bot โ€” don't reuse old ones.
  3. Disable Withdraw on that key.
  4. Whitelist IPs โ€” restrict the key to the bot's IP address (your VPS IP, or the one your bot vendor publishes).
  5. Set a withdrawal whitelist on your exchange itself, separately, to a wallet address you control. Now even if your password is compromised, attackers can't withdraw to their own address.

What does "2048-bit encryption" actually mean?

You'll see this number on bot security pages. In plain English: it refers to the cryptographic key length protecting data in transit between your device and the bot's servers. Modern banks use the same standard. The relevant detail isn't the bit-length โ€” it's that the connection is end-to-end encrypted and the bot vendor doesn't store your API secret in plaintext.

Red flags to walk away from

If you see any of these on a bot's website or onboarding flow, don't sign up:

  • Asks you to deposit funds into the bot's wallet (not your own exchange).
  • Requires withdraw permissions on the API key.
  • Promises specific guaranteed returns ("X% per day").
  • Has no public refund policy.
  • Founder anonymity with no LinkedIn presence or company registration.
  • Pushes you toward sending crypto to "get the bot started".

How Prometheus AI's security model works

The setup matches the standard above, no shortcuts:

  • Non-custodial. Funds stay in your exchange account.
  • API key with Withdraw disabled. The bot literally cannot move your money out.
  • 2048-bit encryption on all data in transit.
  • No KYC required on our end โ€” we never see your identity or balance.
  • Revocable instantly. Disable the API key on your exchange any time and the bot stops trading immediately.

See the full security breakdown on the home page.

FAQ

Can a trading bot steal my money?
Not if you set up the API key correctly. With 'withdraw' permission disabled, the bot can only place trades. Even if the bot company were hacked, the attacker could only place bad trades โ€” not transfer your balance.
What is a non-custodial trading bot?
A non-custodial bot never holds your funds. Your money stays on your own exchange. The bot connects via API to read prices and place orders, without withdrawal access.
What permissions should I give a trading bot?
Two ON โ€” Read and Spot Trading (and Margin if you use leverage). One OFF โ€” Withdraw. That's the entire formula.
How do I revoke access?
Go to API Management on your exchange, find the bot's API key, and delete it. The bot stops trading instantly.
J
Jono ArmstrongFounder, Prometheus AI ยท Spent more time on API permissions than any sane person should
10

Set Up Your First Bot in 10 Minutes

How to Choose the Best AI Trading Bot
โš 

7 Crypto Mistakes Bots Help You Avoid