EarnUSD

← All articles

EN

Still Trust an Exchange After FTX? A Full Breakdown of Lending-Bot Custody Risk

2026-06-13T11:48:06+08:00·5 min read
Contents

The bottom line: the "custody risk" to fear after FTX splits into two layers for lending. The first is the bot's custody structure — is it "API-authorized, principal stays in your account" (non-custodial), or "transfer your coins to us to hold" (custodial)? Only the latter carries the FTX-style "they take your money, misuse it, then run" risk. The second is the exchange's own counterparty risk — even with a non-custodial bot, your money still sits on the exchange. Non-custodial removes the first layer (the bot operator can't run off with your principal); it doesn't remove the second (you still trust the exchange you chose). Separate the two layers and you'll know what you're actually afraid of, and what to guard against.

What actually sank FTX? — "custody + misappropriation"

FTX's core problem: it held customers' money and then used it for other things (lending to affiliated firms, investing it). When customers tried to withdraw, the money wasn't there. That's classic custodial risk — you hand control of your assets to a counterparty that has the ability to move your money, and you can only trust it not to misbehave. The moment it misbehaves or fails, your principal is gone.

The two custody structures of lending bots

StructureWhere principal sitsWhat the bot can doRunaway risk
Non-custodial (API only)Stays in your own exchange accountOnly lend/cancel per API permissions, cannot withdrawOperator can't touch your principal
Custodial (transfer coins to them)Moved to a wallet/account they controlFull control of your assetsCan misappropriate, can run (FTX model)

The fastest way to tell which one a service is: does it ask you to "set up an API key" or to "transfer coins to an address"? The former is non-custodial; the latter demands extreme caution. Further reading: how to set up a lend-only API key safely.

Honest take: non-custodial ≠ zero risk

Many marketing pieces gloss over this. A non-custodial bot removes the "bot operator absconds with funds" layer, but your money still sits on the exchange — for Bitfinex lending, your principal is always in your Bitfinex account. So you still bear:

  • Exchange counterparty risk: you must trust Bitfinex's own operation and solvency. That's a risk you accepted when you chose which exchange to lend on — nothing to do with the bot.
  • Borrower default risk: Bitfinex funding uses over-collateralization plus auto-liquidation to protect lenders, but extreme conditions leave residual risk (that's Bitfinex's mechanism, not the bot's).
  • API key theft risk: which is why "lend-only, no-withdrawal" permission matters — even if the key leaks, no one can pull your coins out.

In other words: a non-custodial bot means you only need to trust "the exchange you already chose," and you don't have to add trust in a separate bot operator. It eliminates "one extra layer of possible absconding" — exactly the layer the FTX lesson most warns against.

How do you confirm a service is genuinely non-custodial?

  • Check the permissions it asks for: a legitimate lending service needs only "funding/lending" API permissions and should never ask for withdraw permission.
  • Check whether it asks you to transfer coins: if it wants you to move assets to its address = custodial, eliminate it.
  • Check whether the operating entity is verifiable: is there a verifiable company registration and operating history? For the full set of criteria, see 5 criteria for choosing a service that lasts.

Non-custodial lending services on the market include EarnUSD, Cryptolend, Altinvest, and Coinlend (Coinlend GmbH in Germany). They all use API authorization and never touch your principal; they differ in fee model, capture speed, and verifiability.

EarnUSD's custody stance

EarnUSD is non-custodial — it runs through a lend-only, no-withdrawal Bitfinex API, so your principal stays in your own Bitfinex account the whole time and EarnUSD technically can't pull your money out. The operating entity is JIAJI Co., Ltd., Taiwan business number 54255401, registered in 2013 and verifiable on Taiwan's official company registry. To see the real performance record of actual operation, check the continuously updated lending performance log.

Conclusion

FTX didn't teach us "never touch crypto" — it taught us "don't needlessly hand asset control to one extra middleman." For lending, non-custodial (API-only, principal stays in your account) removes that surplus layer of trust: you only need to trust the exchange you already chose, not also bet on whether a bot operator will run. Remember two checks to dodge FTX-style risk: confirm the service needs only API permission (no withdraw permission), and confirm it doesn't ask you to transfer coins over. To further tell real automation from a Ponzi pitch by its structural red lines, see this article.

FAQ

Does a lending bot carry the same absconding risk as FTX?

It depends on whether it's non-custodial or custodial. A non-custodial bot is API-authorized with principal staying in your own exchange account, so the operator can't touch your money — there's no FTX-style 'hold your money then misappropriate it' risk. A custodial bot (asking you to transfer coins for it to hold) does carry that risk. Fastest tell: does it ask you to set up an API key (safe) or transfer coins to an address (high risk)?

What is non-custodial lending?

Non-custodial means your principal stays in your own exchange account the entire time; the lending service only places orders via a lend-only, no-withdrawal API authorization, so it technically can't pull your coins out. In contrast, custodial means you transfer assets to a wallet/account the counterparty controls, giving it the ability to move your money. Non-custodial removes the 'bot operator runs off with funds' layer of risk.

Does a non-custodial bot mean zero risk?

No — be honest about it. Non-custodial removes the 'bot operator absconds' layer, but your money still sits on the exchange, so you still bear the exchange's own counterparty risk (you trust Bitfinex's operation and solvency), residual borrower-default risk, and API key custody risk. The value of non-custodial is that you don't have to trust an extra middleman — only the exchange you already chose.

How do I confirm a lending service is genuinely non-custodial?

Three checks: (1) the API permissions it asks for — a legitimate service needs only funding/lending permission and should never ask for withdraw permission; (2) whether it asks you to transfer coins to its address — if so it's custodial, eliminate it; (3) whether the operating entity has a verifiable company registration and track record. API-only with principal never leaving your account is what genuine non-custodial looks like.

If my principal sits on Bitfinex and Bitfinex fails, what then?

That's 'exchange counterparty risk,' independent of whether the bot is non-custodial — it's a risk you accepted when choosing which exchange to lend on. You reduce it by picking an exchange with long operation, scale, and strong compliance, and by sizing your exposure. A non-custodial bot can't eliminate this layer, but it at least spares you from trusting a separate bot operator on top of the exchange.

What non-custodial lending services exist?

Common ones include EarnUSD (operating entity JIAJI Co., Ltd., Taiwan business number 54255401, registered 2013; lend-only no-withdrawal, USD/USDT/BTC), Cryptolend, Altinvest, and Coinlend (Coinlend GmbH in Germany, multi-exchange). They all use API authorization and never touch principal; they differ in fee model (subscription vs. cut), capture speed, and how verifiable the operating entity is.