Skip to main content
  1. Home
  2. Computing
  3. News

If you use PayPal, your personal data may have been compromised

By
Add as a preferred source on Google

PayPal has recently suffered a massive data breach, and if you were one of the affected users, your details may have been leaked. Given the nature of a PayPal account, the exposed data includes some of the most sensitive information, which could put those users at risk of identity theft.

The company is taking steps to protect the accounts from further damage. Here’s what we know about what happened and how to protect yourself.

A person holds a mobile phone with the PayPal app open.
PayPal

According to PayPal, an unauthorized third party was able to access close to 35,000 PayPal accounts. This took place in December 2022, and PayPal names December 6 to 8 as well as December 20 as the dates when this breach was taking place. During those time windows, the attacker was able to view, and possibly acquire, most of the sensitive data tied to a PayPal account.

Recommended Videos

PayPal issued a warning to the users whose data may have been compromised. In the report, PayPal states: “The personal information that was exposed could have included your name, address, Social Security number, individual tax identification number, and/or date of birth.”

It’s possible that invoicing data and credit card or debit card details may have been accessed. It’s unclear what will happen to the stolen data, but it’s safe to assume that some form of identity theft or phishing is in the cards.

Daily reminder to not re-use your passwords

The company didn’t divulge how exactly the attackers were able to access the accounts, although it claims it hasn’t found evidence of hackers stealing the user data directly from PayPal’s systems. On the other hand, Bleeping Computer reports that the attackers were able to hack into the accounts through credential stuffing. This means that they may have tried to use login credentials stolen elsewhere — in massive quantities — until some of them worked.

As a response to the attack, PayPal reset the passwords on all of the accounts that were affected. If your account was one of them, you’ll be asked to set up a new password the next time you try to log in. PayPal is also giving each of those users a two-year subscription to Equifax, an identity monitoring service.

In order to protect yourself from similar attacks, make sure to not use the same login credentials (password and username or email) across multiple websites and apps. In addition, it’s always a good idea to set up two-factor authentication on services like PayPal in order to be extra sure that your data is safe from attacks.

Monica J. White
Monica J. White
Former Computing Writer
Monica is a computing writer at Digital Trends, focusing on PC hardware. Since joining the team in 2021, Monica has written…
Topics
Layr is a new macOS clipboard manager that replaces hotkeys with trackpad gestures
This new Mac app opens clipboard history with a four-finger tap instead of a keyboard shortcut
Cursor open on Mac

macOS users already have several clipboard manager options, including Paste and Maccy. Most of them work well, but they are usually built around keyboard shortcuts. That is useful for keyboard-heavy users, but it can feel out of place for users who rely on the trackpad for most of their work.

Layr, a new clipboard manager from the developer behind Declutr, takes a different approach. Rather than assigning a keyboard shortcut to open the clipboard history, the app lets users bring up a clipboard overlay with a four-finger tap on the trackpad.

Read more
YouTube’s AI content labels are getting a much-needed makeover
No more hunting through descriptions. YouTube's AI labels are finally moving front and center.
YouTube ai declaration longform video

This year’s Google I/O marked the transition of Google from a search company to a fully AI-focused company. The company launched several AI tools, but the one that matters the most for YouTubers is Google Omni, built for video generation and editing. 

While tools like Omni lower the barrier for creators, which is a good thing, it also results in the platform being inundated with low-effort AI content. The company understands that this will annoy a large percentage of its users, so it has been asking creators to disclose AI-generated content since 2024. 

Read more
AI models have a religion favoritism problem, and new research exposes it
AI models are subtly steering users toward certain religions, and most people have no idea it's happening.
Artificial Intelligence

A new research consortium has found something worth paying attention to: when you ask AI about grief, love, loss, or moral decisions, it almost never brings religion into the conversation.

The Consortium for Evaluation of Faith and Ethics in AI (CEFE-AI), a collaboration among researchers at Brigham Young University, Baylor University, the University of Notre Dame, and Yeshiva University, published its findings this week at the Summit on AI Ethics in Athens, Greece.

Read more