PayPal has notified customers of a data breach after a software error in a loan application exposed sensitive personal information, including Social Security numbers. The incident occurred between July 1 and December 13, 2025, affecting around 100 customers. PayPal discovered the breach on December 12, 2025, and reversed the code change responsible for the error, blocking attackers’ access to data. Affected users will receive two years of free credit monitoring services.
Source: https://www.bleepingcomputer.com/news/security/paypal-discloses-data-breach-exposing-users-personal-information