Massive data breach sees 16 million PayPal accounts leaked online


Hackers recently announced on a well-known forum that they were selling a dataset of 15.8 million stolen PayPal credentials, allegedly including login emails and plaintext passwords.

The cybercriminals claim the information was stolen in May 2025, and the dataset contains not just emails and passwords but also associated URLs, making it easier for criminals to automate credential stuffing attacks and launch identity theft scams.

Read more…
Source: TechRadar News


Sign up for the Cyber Security Review Newsletter
The latest cyber security news and insights delivered right to your inbox


Related:

  • Major data breach at Philippines Agricultural Credit Policy Council (ACPC) exposes sensitive information

    June 9, 2024

    The Agricultural Credit Policy Council (ACPC) has been hacked, exposing sensitive data and raising concerns about government agency security. Ph1ns, a hacker who gained unauthorized access to the ACPC’s internal systems, revealed the breach. The hacker was also responsible for several hack attacks on government agencies, including the DOST and the PNP. Read more… Source: Manila Bulletin Sign up ...

  • Telangana Police hit by second major data breach in a week as TSCOP App compromised

    June 7, 2024

    Just a week after the hacking incident involving Telangana police’s HawkEye app, another app, TSCOP, has been compromised as well. As a result, policerelated data is currently available for sale on online forums. The same hacker responsible for the breach of HawkEye is behind this security lapse. The TSCOP app user data is being sold online ...

  • CoinGecko confirms email provider data breach, over 23,000 phishing emails sent

    June 7, 2024

    Cryptocurrency data aggregator CoinGecko has confirmed a data breach suffered by its third-party email management platform GetResponse. Following yesterday’s reports of a new wave of crypto airdrop scams, CoinGecko confirmed that GetResponse suffered a data breach on June 5, allowing attackers to export the contact information of over 1.9 million CoinGecko users. Read more… Source: CoinTelegraph Sign up for ...

  • Philippines: Toyota, Robinsons Land confirm data breaches

    June 6, 2024

    Carmaker Toyota and real estate firm Robinsons Land have confirmed reports of data breaches in their company and are now under evaluation by the National Privacy Commission (NPC). In a statement Thursday, NPC Compliance and Monitoring Division chief Rainier Milanes said Robinsons Land notified the NPC of a breach on June 1 while Toyota made a ...

  • Hundreds of Snowflake customer passwords found online are linked to info-stealing malware

    June 5, 2024

    Cloud data analysis company Snowflake is at the center of a recent spate of alleged data thefts, as its corporate customers scramble to understand if their stores of cloud data have been compromised. Snowflake helps some of the largest global corporations — including banks, healthcare providers and tech companies — store and analyze their vast amounts ...

  • MediSecure put into administration weeks after massive data breach

    June 5, 2024

    Online prescription provider MediSecure has collapsed into administration and liquidation just weeks after a large-scale ransomware attack resulted in customer details being leaked on the dark web. The Melbourne-based health provider last month confirmed the massive data breach had taken place, with the personal information and some limited health information of people who used the service ...