PayPal Discloses Data Breach That Exposed User Info For 6 Months (bleepingcomputer.com) 7
PayPal is notifying customers of a data breach after a software error in a loan application exposed their sensitive personal information, including Social Security numbers, for nearly 6 months last year. From a report: The incident affected the PayPal Working Capital (PPWC) loan app, which provides small businesses with quick access to financing. PayPal discovered the breach on December 12, 2025, and determined that customers' names, email addresses, phone numbers, business addresses, Social Security numbers, and dates of birth had been exposed since July 1, 2025.
The financial technology company said it has reversed the code change that caused the incident, blocking attackers' access to the data one day after discovering the breach. "On December 12, 2025, PayPal identified that due to an error in its PayPal Working Capital ('PPWC') loan application, the PII of a small number of customers was exposed to unauthorized individuals during the timeframe of July 1, 2025 to December 13, 2025," PayPal said in breach notification letters sent to affected users. "PayPal has since rolled back the code change responsible for this error, which potentially exposed the PII. We have not delayed this notification as a result of any law enforcement investigation."
The financial technology company said it has reversed the code change that caused the incident, blocking attackers' access to the data one day after discovering the breach. "On December 12, 2025, PayPal identified that due to an error in its PayPal Working Capital ('PPWC') loan application, the PII of a small number of customers was exposed to unauthorized individuals during the timeframe of July 1, 2025 to December 13, 2025," PayPal said in breach notification letters sent to affected users. "PayPal has since rolled back the code change responsible for this error, which potentially exposed the PII. We have not delayed this notification as a result of any law enforcement investigation."
So they knew Dec 12th 2025 (Score:4, Interesting)
Wow! what timely action, but then it is only their customers that face risk.
Re: (Score:1)
So looking forward to my two free years of credit reports!
Re: (Score:2)
If you havnt already (Score:2)
How many times is this? (Score:2)
How many times has Paypal been hacked and lost control of its user data? Six? Eight? More? I opened a Paypal account once to buy a specific item, and once it was delivered closed it down. A couple months later it was hacked, and fortunately I had recently cancelled the credit card associated with it. I see no reason to go back, if you insist on Paypal for your payments you don't want my business.