“We have no information suggesting that any of your personal information was misused as a result of this incident, or that there are any unauthorised transactions on your account,” PayPal told users. The attack on PayPal compromised close to 35,000 accounts, so it wasn’t dire as recent Australian hacks, but the company has reset user passwords, and sent recommendations to those it believes were compromised by the attack. PayPal is the latest company to suffer a massive cybersecurity breach, confirming a large-scale “credential stuffing” attack took place last month, with personal data compromised.Ĭredential stuffing attacks involve hackers attempting to access an account by using usernames and password gleamed from a previously third party hack.