Paypal suffered a data security incident that affected 34,942 users after unauthorized parties were able to access the PayPal customer account using login credentials.
The exposed personal information included name, address, Social Security number, individual tax identification number, and/or date of birth.
Source: https://www.databreaches.net/34942-paypal-users-notified-of-data-security-incident-in-december/
TPRM report: https://scoringcyber.rankiteo.com/company/paypal
"id": "pay211919123",
"linkid": "paypal",
"type": "Data Leak",
"date": "12/2022",
"severity": "85",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"
{'affected_entities': [{'customers_affected': '34,942',
'industry': 'Financial Services',
'name': 'PayPal',
'type': 'Company'}],
'attack_vector': 'Unauthorized Access',
'data_breach': {'number_of_records_exposed': '34,942',
'personally_identifiable_information': True,
'sensitivity_of_data': 'High',
'type_of_data_compromised': ['Name',
'Address',
'Social Security Number',
'Individual Tax Identification '
'Number',
'Date of Birth']},
'description': 'PayPal suffered a data security incident that affected 34,942 '
'users after unauthorized parties were able to access the '
'PayPal customer account using login credentials. The exposed '
'personal information included name, address, Social Security '
'number, individual tax identification number, and/or date of '
'birth.',
'impact': {'data_compromised': ['Name',
'Address',
'Social Security Number',
'Individual Tax Identification Number',
'Date of Birth']},
'initial_access_broker': {'entry_point': 'Login Credentials'},
'title': 'PayPal Data Security Incident',
'type': 'Data Breach',
'vulnerability_exploited': 'Login Credentials'}