PayPal states that it was hacked before the end of 2022. Here’s what you need to know.
It’s not just games and publishers that get hacked, and unfortunately the no-deploy PayPal payment service was the victim of a massive hack last December. More specifically, between December 6 and December 8, 2022. The hackers would have tested various mappings between usernames and passwords recovered from a previous data breach. The goal would have been to attack users who use the same passwords for multiple different accounts.
PayPal warns, yes but
Over the past few days, PayPal has been sending out data breach notifications to thousands of users whose accounts were compromised through this type of attack known as redential stuffing. Namely, an attack in which hackers try to gain access to an account by trying username and password pairs.
According to PayPal’s data breach report, 34,942 of its users were affected by the incident. During the two days, the hackers had access to the account holders’ full names, dates of birth, mailing addresses, social security numbers, and tax identification numbers. Worse, transaction history, credit card details or PayPal billing information are also accessible on PayPal accounts…
If PayPal claims to have taken timely measures to limit intruders’ access to the platform, we still advise you to change your password. It doesn’t hurt and on the contrary you will have peace of mind.
the The PayPal notification is readable in this file if you are interested :
We have no information to suggest that your personal information was misused as a result of this incident or that unauthorized transactions took place on your account.
The best way to protect your data is to enable two-factor authentication protection, as required by other services such as Steam.
