...
...
Next Story

Hackers claim 16 million PayPal accounts exposed; Company denies new breach

Hackers claim to have leaked 16 million PayPal logins online. While PayPal denies a new breach, experts urge users to reset passwords immediately.

Published on: Aug 25, 2025 11:42 AM IST

A dataset allegedly containing login details of nearly 16 million PayPal users has surfaced on a popular hacking forum, sparking concerns among customers. The information reportedly includes email addresses, plaintext passwords, and linked URLs that could be exploited for credential-stuffing attacks or identity theft.

Reports from a cybersecurity company say that the hacked data from PayPal is being sold on the dark web at just $2. (Pexels)
Reports from a cybersecurity company say that the hacked data from PayPal is being sold on the dark web at just $2. (Pexels)

Aishwarya is your go-to guide for turning your home, especially your kitchen, into the smartest and most efficient space on the block. If you ever find yourself wondering which air fryer actually delivers that perfect crisp, whether a new-age water purifier is worth the hype, or how to make your refrigerator work smarter (not harder), she’s the one to turn to. For over five years, Aishwarya has dived deep into the world of home and kitchen tech, reviewing everything from air fryers and microwaves to chimneys and water purifiers. Her approach is simple: cut the jargon, highlight genuine innovation, and spotlight budget-friendly solutions without compromising on quality. Her column is where fresh launches meet honest opinions. There is no sugarcoating and no fancy marketing spin. Every review comes from real, hands-on experience, giving readers the unfiltered truth, good or bad (sometimes brutal). A big believer in viral “how-to” hacks, Aishwarya loves sharing appliance hacks like microwave-cleaning tricks that involve a lemon and absolutely zero scrubbing, fridge-care tips (when sometimes all you need to do is defrost) that save you trouble, and everything in between. She tries her best for home tech to feel less overwhelming and a whole lot more fun.

Read moreRead less

Hackers claim the data was stolen in May 2025, but PayPal has denied reports of a fresh breach. In a statement, the company said the information is likely connected to older security incidents and malware-driven credential theft rather than any new vulnerabilities in its systems.

As reported by Cybernews, the company stated, “There has been no data breach – this is related to an incident in 2022 and not new.”

The dataset, first reported by Cybernews, is being sold on dark web marketplaces for just $2, a suspiciously low price that has led many researchers to question its authenticity. Security experts also point out that if such a massive breach had occurred recently, there would have been signs of widespread misuse already.

This is not the first time PayPal has faced scrutiny over data security. A 2022 incident exposed 35,000 accounts and led to a $2 million fine from the New York State Department of Financial Services for failing to comply with cybersecurity rules. The current claims, however, are far larger in scale.

Experts believe the new dataset may have been compiled using malware called “infostealer”, which can harvest passwords, cookies, and other sensitive data from infected devices. Some versions of this malware can even erase themselves after exfiltration, making detection difficult.

Is PayPal still safe to use after the 2025 breaches?

PayPal remains one of the world’s biggest fintech companies and is bound by strict security regulations. The company has not reported any major new breaches so far. Regardless of whether the leak is new or fake, security professionals advise users to act with caution.

While PayPal continues to dismiss claims of a new breach, the alleged leak highlights how stolen credentials, new or old, remain valuable to cybercriminals. For users, the safest course of action is to update passwords now rather than wait for confirmation.

 
SHARE THIS ARTICLE ON