A Malicious Data Breach Affecting 35,000 PayPal Users Has Occurred — Are You One Of Them?

During a massive data breach, hackers gain access to the personal and financial information of users.

PayPal is notifying users of a data breach and sending notifications to thousands of users whose accounts were compromised by a credential-stuffing attack that exposed their personal information.

A credential stuffing attack is an attempt by hackers to gain access to a user account by reusing exposed usernames and passwords from previous data breaches.

Utilizing bots to stuff lists of credentials into login portals on numerous websites, with a focus on the financial industry.

35,000 PayPal customers impacted

The attack occurred between December 6 and December 8, 2022, according to PayPal. PayPal identified and addressed the suspicious activity before launching an investigation to determine how the hackers gained access to the accounts in question.

By December 20, 2022, the company concluded its investigation, which confirmed that unauthorized third parties had used valid credentials to access accounts.

The financial payment company asserts that this was not the result of a system failure or security breach on its end and that there is no evidence that login information for PayPal users was obtained. According to PayPal’s report, the incident has affected 34,942 user accounts. Hackers illegally obtained the full names, dates of birth, addresses, Social Security numbers, and tax ID numbers of account holders as a result of the breach.

The hackers had access to a user’s transaction history, credit and debit card information, and invoicing data, despite PayPal’s assertion that it responded promptly to the data breach to limit the attack as much as possible.

Ultimately, PayPal asserts that the hackers did not conduct any transactions during the breach.

What you can do

PayPal recommends that users who have received data breach notifications change their passwords for all of their online accounts, not just their own. It is strongly recommended that the password be at least 12 characters long and contain both alphabetic and numeric characters as well as symbols. Without a password manager, it is nearly impossible to create and remember unique, strong passwords for every website and service you use.

In addition, it is recommended that PayPal users activate and utilize two-factor authentication (2FA) to protect their accounts and prevent data breaches. Additionally, if you use a smartphone to access your accounts, you could employ facial recognition.

Why Trust Us?

Best Top Reviews Online was established in 2018 to provide our readers with detailed, truthful, and impartial advice on what to buy. We now have millions of monthly users from all over the world and annually evaluate over a thousand products.

The above article was written by the BestTopReviewsOnline team, which consists of some of the most knowledgeable technical experts in the United States. Our team consists of highly regarded writers with vast experience in smartphones, computer components, technology apps, security, and photography, among other fields.

Related Stories

  • All Post
  • Best Picks
  • Explainers
  • How To
  • News
  • Versus

Get more info



Best Products

Buying Guides

Contact Us

About Us

We provide a platform for our customers to rate and review services and products, as well as the stores that sell them. We research and compare the most popular brands and models before narrowing it down to the top ten, providing you with the most comprehensive and reliable buying advice to help you make your decision.


BestTopReviewsOnline.com is a participant in the Amazon Services LLC Associates Program, an affiliate advertising program designed to provide a means for sites to earn advertising fees by advertising and linking to Amazon.com. As an Amazon Associate I earn from qualifying purchases.


Address & Map

20 S Santa Cruz Ave, Suite 300, Los Gatos, CA 95030, United States

© 2022 BestTopReviewsOnline.com Pty. Ltd. All Rights Reserved. Licensing: All third-party trademarks, images, and copyrights used on this page are for comparative advertising, criticism, or review. As this is a public forum where users can express their opinions on specific products and businesses, the opinions expressed do not reflect those of BestTopReviewsOnline.com.