PayPal explains that it was the victim of a hacker attack before the end of 2022. Here’s what you need to know.
It’s not just games and publishers that are being hacked and alas, the PayPal payment service, which needs no introduction, was the victim of a massive hack last December. More precisely between December 6 and 8, 2022. The hackers would have tested different associations between usernames and passwords, recovered in a previous data leak. The aim would have been to target users who use the same passwords for several different accounts.
PayPal warns, yes but
For the past few days, PayPal has been sending data breach notifications to thousands of users whose accounts have been accessed through this type of attack, known as redential stuffing. Namely an attack in which hackers attempt to gain access to an account by trying username and password pairs.
According to PayPal’s data breach report, 34,942 of its users were affected by the incident. During the two days, the hackers had access to the full names, dates of birth, mailing addresses, social security numbers and tax identification numbers of the account holders. Worse, transaction history, credit card details or PayPal billing data are also accessible on PayPal accounts…
If PayPal claims to have taken timely measures to limit the access of intruders to the platform, we still advise you on our side to change your password. It does not hurt and on the contrary, you will have peace of mind.
The PayPal notification is readable in this file if you are interested :
We have no information to suggest that any of your personal information was misused as a result of this incident, or that there are any unauthorized transactions on your account.
The best for the protection of your data being to activate the protection of the two-factor authentication as requested by other services like Steam.