← Back to Search

PayPal

2023-01-23 · Severity 5/10 — Medium · Web_app_exploit
Incident Summary

PayPal reported a data breach that may have impacted customer accounts. The company stated that unauthorized parties were able to access customer accounts using login credentials, but there is no evidence that any personal information was misused or that there were any unauthorized transactions on accounts. The incident occurred between December 6 and December 8, 2022. PayPal has implemented enhanced security controls and reset the passwords of affected accounts. It is important to note that PayPal's investigation shows that they believe that this unauthorized activity occurred when the third parties were able to view, and potentially acquire, some personal information for certain PayPal users. This incident serves as a reminder for organizations to ensure that they have robust security measures in place to protect customer information, as well as to regularly monitor for suspicious activity and quickly respond to any breaches. Source

Data Types Compromised
name
Sources
https://www.documentcloud.org/documents/23578067-paypal-notice?responsive=1&title=1&ref=secretciso.org
Details
Records Affected
Unknown
Industry
Headquarters
Date Reported
2023-01-23
Related Breaches

No related breaches in the last 90 days.