PayPal has been hit with a $2 million fine by New York’s Department of Financial Services (DFS) following a major cybersecurity failure that exposed sensitive customer data. The breach, which lasted nearly seven weeks, left users’ names, dates of birth, and Social Security numbers vulnerable to cybercriminals.
The DFS found that PayPal’s inadequate security framework made it easy for attackers to exploit weaknesses. Investigators revealed that the company lacked properly trained personnel in key cybersecurity roles and failed to enforce essential security measures like multifactor authentication (MFA) and CAPTCHA protection.
How the Breach Unfolded
The issue first surfaced on 6 December 2022, when a security analyst discovered a leaked message hinting at a vulnerability involving Social Security numbers. Soon after, PayPal’s cybersecurity team detected unusual spikes in login attempts—signs of a “credential stuffing” attack, where hackers used stolen login details from previous breaches to access accounts.
The DFS report highlighted that PayPal’s failure to implement fundamental security controls played a significant role in the breach. “The company had not utilized qualified personnel for critical cybersecurity roles and had not provided adequate training,” the agency noted.
PayPal’s Response and Security Upgrades
Following the breach, PayPal has introduced several security enhancements to prevent future attacks. The company has now mandated multifactor authentication for all U.S. accounts, enforced password resets for affected users, and implemented CAPTCHA to deter automated hacking attempts.
Despite these corrective measures, the incident raises concerns about how major financial platforms handle user data. With cybersecurity threats evolving, PayPal’s missteps serve as a warning for other companies to strengthen their digital defences before it’s too late.
I am passionate about crafting stories, vibing to good music (and making some too), debating Nigeria’s political future like it’s the World Cup, and finding the perfect quiet spot to work and unwind.
At the GITEX Africa 2025 summit, Nigeria’s tech policy chief, Kashifu Inuwa, took the spotlight, urging the global tech ecosystem to keep AI development grounded in human values. Representing the National Information Technology Development Agency (NITDA), Inuwa joined global industry players to unpack how artificial intelligence is reshaping businesses across the world. During a panel […]
The West African Examinations Council (WAEC) has introduced the first computer-based WASSCE for school candidates in Nigeria. WAEC announced the major shift during a press briefing at its national office in Yaba, Lagos, on Thursday. Dr. Amos Dangut, Head of WAEC Nigeria, said the council is fully prepared to conduct the 2025 exam using digital […]
This marks the seventh edition of the accelerator, open to Seed to Series A startups that have at least one founder of African descent, a live product in market, and a responsible approach to AI innovation.
Vendease CEO and co-founder Tunde Kara confirmed the exit, stating the business had recovered its investment in Ghana within six months.
The new PoS system comes with a range of advanced features, including real-time monitoring, instant settlements, pay-by-link options, and a 100% transaction success rate. It’s also been optimised to suit businesses of all sizes, giving merchants a more reliable and efficient way to manage their payments without disruption.
South African EV startup Zimi has received $320,000 (R6 million) to explore vehicle-to-grid (V2G) charging technology. The Energy and Environment Partnership (EEP) Africa Trust Fund awarded the funding for this innovative energy project. V2G allows electric vehicles to return power to homes, offices, or the national grid during electricity shortages. Notably, EEP Africa selected Zimi […]
The Central Bank of Kenya (CBK) will start issuing licenses to new banks again from July 1, 2025. This move ends a ban that had been in place since November 17, 2015. CBK paused new bank licenses in 2015 to fix governance, management, and operational problems in the banking sector. The goal was to make […]
According to the letter, the licence comes with strict conditions, and the regulator made it clear that Ascensia—like all financial institutions—must operate within the provisions of the CBN Act of 2007, the Banks and Other Financial Institutions Act (BOFIA) of 2020, and all related regulations issued by the bank.
The Nigerian House of Representatives has ordered Remita, a payment platform, to refund ₦182.77 billion to the federal government. This amount covers transaction leakages from the Treasury Single Account (TSA) system since 2015. The Public Accounts Committee (PAC) of the House gave the order after a detailed forensic audit. Seyi Katola & Company, a firm […]
TikTok has launched a new feature called Footnotes to help users better understand the videos they watch. The company is testing the feature in the United States. With Footnotes, users can now add helpful information to videos. TikTok says this will give people more context, especially when content includes complex topics or current events. TikTok […]
At the GITEX Africa 2025 summit, Nigeria’s tech policy chief, Kashifu Inuwa, took the spotlight, urging the global tech ecosystem to keep AI development grounded in human values. Representing the National Information Technology Development Agency (NITDA), Inuwa joined global industry players to unpack how artificial intelligence is reshaping businesses across the world. During a panel […]
The West African Examinations Council (WAEC) has introduced the first computer-based WASSCE for school candidates in Nigeria. WAEC announced the major shift during a press briefing at its national office in Yaba, Lagos, on Thursday. Dr. Amos Dangut, Head of WAEC Nigeria, said the council is fully prepared to conduct the 2025 exam using digital […]
This marks the seventh edition of the accelerator, open to Seed to Series A startups that have at least one founder of African descent, a live product in market, and a responsible approach to AI innovation.
Vendease CEO and co-founder Tunde Kara confirmed the exit, stating the business had recovered its investment in Ghana within six months.
The new PoS system comes with a range of advanced features, including real-time monitoring, instant settlements, pay-by-link options, and a 100% transaction success rate. It’s also been optimised to suit businesses of all sizes, giving merchants a more reliable and efficient way to manage their payments without disruption.
South African EV startup Zimi has received $320,000 (R6 million) to explore vehicle-to-grid (V2G) charging technology. The Energy and Environment Partnership (EEP) Africa Trust Fund awarded the funding for this innovative energy project. V2G allows electric vehicles to return power to homes, offices, or the national grid during electricity shortages. Notably, EEP Africa selected Zimi […]
The Central Bank of Kenya (CBK) will start issuing licenses to new banks again from July 1, 2025. This move ends a ban that had been in place since November 17, 2015. CBK paused new bank licenses in 2015 to fix governance, management, and operational problems in the banking sector. The goal was to make […]
According to the letter, the licence comes with strict conditions, and the regulator made it clear that Ascensia—like all financial institutions—must operate within the provisions of the CBN Act of 2007, the Banks and Other Financial Institutions Act (BOFIA) of 2020, and all related regulations issued by the bank.
The Nigerian House of Representatives has ordered Remita, a payment platform, to refund ₦182.77 billion to the federal government. This amount covers transaction leakages from the Treasury Single Account (TSA) system since 2015. The Public Accounts Committee (PAC) of the House gave the order after a detailed forensic audit. Seyi Katola & Company, a firm […]
TikTok has launched a new feature called Footnotes to help users better understand the videos they watch. The company is testing the feature in the United States. With Footnotes, users can now add helpful information to videos. TikTok says this will give people more context, especially when content includes complex topics or current events. TikTok […]
Strive for tech news and insights? Subscribe to our newsletter and stay up-to-date with the latest tech trends, expert insights, and exclusive content.
Start your perfect news blog or magazine with Caards, the premium WordPress theme you've been looking for.
Error: No feed found.
Please go to the Instagram Feed settings page to create a feed.
© 2022. All rights reserved by Axilthemes.
No Comments