Open swidup opened 1 year ago
PayPal, HQ: San Jose, CA, EMP: 29900, NIACS: 52522 (credit cards and transaction processing, and finance) learned on Dec 20, 2022 that unauthorized parties were able to access 34,942 customer accounts through credential stuffing attacks. The attacks occurred between December 6 and December 8, 2022. The company started mitigating the attacks as soon as they learned of them on Dec 20, 2022. Data accessed on the customer account: full names, dates of birth, postal addresses, social security numbers, and individual tax identification numbers. Notification of customers impacted started Jan 18, 2023. Impacted users will receive a free identity monitoring service from Equifax for two years.
https://www.bleepingcomputer.com/news/security/paypal-accounts-breached-in-large-scale-credential-stuffing-attack/