Hackers ‘brute-slammed’ PayPal accounts over three days to gain customer data access.
SOPA Images/LightRocket via Getty Images, a number of readers have asked if this security incident was a result of PayPal itself being compromised.The answer is an emphatic no; hackers did not breach PayPal. The irony here is that it will have been breaches at other services that were behind the large-scale credential stuffing attack, which led to nearly 35,000 PayPal customer accounts being accessed by an unauthorized third-party criminal actor.
"Other breaches led to a large population's passwords in use elsewhere being stolen, and because people often reuse passwords and have done so for a long time," Sam Curry, the chief security officer at Cybereason, says,"the hackers were able to brute slam PayPal accounts with these until they found 35,000 matches." From a security perspective, Curry went on to suggest that the interesting thing here is how many authentications failed to access user accounts.
It should be noted that, according to an official security incident notification sent out to affected customers, PayPal has"no information suggesting that any of your personal information was misused as a result of this incident, or that there are any unauthorized transactions on your account."With so many online accounts and services requiring a password to access, the average user has ended up in something of a password overload situation.
, as long as you use a strong and unique master password they remain a safe way to deal with login security across multiple accounts.
France Dernières Nouvelles, France Actualités
Similar News:Vous pouvez également lire des articles d'actualité similaires à celui-ci que nous avons collectés auprès d'autres sources d'information.
PayPal breach leaks sensitive data of thousands of users | Digital TrendsPayPal has recently suffered a massive databreach that might have left tens of thousands of users at risk of identity theft.
Lire la suite »
37 million T-Mobile customers were hacked | CNN BusinessT-Mobile says a “bad actor” accessed personal data from 37 million current customers in a November data breach.
Lire la suite »
T-Mobile says data on 37 million customers stolenThe U.S. wireless carrier T-Mobile said Thursday that an unidentified malicious intruder breached its network in late November and stole data on 37 million customers, including addresses, phone numbers and dates of birth.
Lire la suite »
37 million accounts hacked in latest T-Mobile data breachT-Mobile announces another data breach, impacting 37 million accounts
Lire la suite »
Northport resident warns of puppy scam advertised through her hacked Facebook accountNorthport resident Jane Dietl described a scam on her Facebook account that has gotten pretty frightening.
Lire la suite »
T-Mobile says ‘bad actor’ hacked accounts of 37M customers. Here’s what to do if you’re a customer.T-Mobile says ‘bad actor’ hacked accounts of 37M customers. Here’s what to do, if you are a customer.
Lire la suite »