Almost 35.000 PayPal user accounts have been violated by the so-called "credential stuffing", in accordance with Bleeping Computer
Paypal was able to stop the two-day attack and reset the passwords of affected users.
The "credential stuffing” is a technique used by hackers to gain access to user accounts. The hacker uses previously leaked credentials, and if the user has used them again for their PayPal account, they can gain access to it.
The attack, according to information, lasted two days, between December 6 and December 8, 2022, and influenced 34.942 user accounts.
Hackers may have gained access to a significant amount of personal information of affected users, including names, dates of birth, mailing addresses, social security numbers and tax identification numbers. In addition, they had access to transaction histories, linked credit and debit card details and billing data PayPal.
PayPal was able to stop the attack and reset passwords for users, causing the hackers to lose access. The popular online payment platform assures that no unauthorized transaction was attempted, while affected users are compensated with two free years of monitoring from Equifax.
What is very important, then, is not to reuse the same password across all platforms, especially payment platforms. If Paypal users hadn't reused their passwords, they wouldn't have been hacked.
If you can't remember all your passwords you can use a service like 1Password or other password managers. You can also take advantage of PayPal's two-factor authentication for even tighter account security.
Do not forget to follow it Xiaomi-miui.gr on Google News to be informed immediately about all our new articles! You can also if you use RSS reader, add our page to your list by simply following this link >> https://news.xiaomi-miui.gr/feed/gn
Follow us on Telegram so that you are the first to learn our every news!
