A threat actor is selling a large dataset of over 15.8 million PayPal login credentials, allegedly collected through infostealer malware logs. The data includes email, password, and URL links, posing significant risks for credential stuffing, phishing, and fraud schemes. #InfostealerMalware #PayPalLeak
Keypoints
- A cybercriminal is selling a dataset purportedly containing PayPal login information from over 15.8 million accounts.
- The data includes email addresses, plaintext passwords, and URLs related to PayPal services.
- The dataset is believed to originate from infostealer malware logs rather than a direct breach of PayPalβs systems.
- Many passwords are reused, increasing the risk for users across multiple platforms.
- The sale price for full access is $750, highlighting the value of stolen account data on cybercrime markets.
Read More: https://hackread.com/threat-actor-selling-plain-text-paypal-credentials/