PayPal App Code Error Leaked Personal Info
A software error in PayPal's loan app exposed sensitive data for nearly six months; affected users get two years of free credit monitoring from Equifax.
- On December 12, 2025, PayPal discovered that customer data had been exposed since July 1, 2025, and reversed the code change one day later, blocking attackers' access.
- A coding change in the PayPal Working Capital loan app introduced an error that leaked small-business borrowers' personal information.
- About 100 customers were notified and some saw unauthorized transactions, with exposed data including names, Social Security numbers, dates of birth, email addresses, phone numbers and business addresses.
- It reset passwords for impacted accounts and requires affected users to enroll by June 30, 2026 for two years of free three-bureau credit monitoring and identity restoration through Equifax.
- Previously, PayPal had faced a large 2022 breach affecting 35,000 accounts and a $2,000,000 settlement with New York State in January 2025; BleepingComputer sought comment but received no immediate response from a PayPal spokesperson.
10 Articles
10 Articles
PayPal discloses data breach that exposed user info for 6 months
PayPal is notifying customers of a data breach after a software error in a loan application exposed their sensitive personal information, including Social Security numbers, for nearly 6 months last year.
Due to a programming error in a credit application, PayPal has disclosed sensitive customer data for almost half a year. Among other things, social security numbers of small companies are affected. PayPal has announced a data breakdown that affects customers of its credit platform PayPal Working Capital (PPWC). The service is aimed at small enterprises that need short-term capital. An error in the code of the application ensured that personal an…
PayPal discloses extended data leak linked to Loan App glitch - Cybernoz - Cybersecurity News
PayPal discloses extended data leak linked to Loan App glitch Pierluigi Paganini February 20, 2026 PayPal disclosed a six-month data breach that exposed sensitive user data, including Social Security numbers, due to a software error. PayPal has disclosed a data breach caused by a software bug in its PayPal Working Capital loan app. The flaw
PayPal Flaw Exposed Sensitive Data in Lending App for Six Months
PayPal is notifying customers after a software error in its PayPal Working Capital (PPWC) loan application exposed certain personal information, including social security numbers, for nearly six months in 2025. Although the company said its core systems were not breached, the issue resulted in potential unauthorized access to sensitive customer data. “Upon learning about this unauthorized activity, we began an investigation and terminated the u…
PayPal Data Breach Exposes SSNs and Business PII of Customers for Over Six Months
PayPal has issued a formal data breach notification disclosing that a coding error in its PayPal Working Capital (PPWC) loan application exposed the personally identifiable information (PII) of an undisclosed number of customers for approximately six months, from July 1, 2025, to December 13, 2025. The company detected the unauthorized exposure on December 12, 2025, […] The post PayPal Data Breach Exposes SSNs and Business PII of Customers for O…
Coverage Details
Bias Distribution
- 100% of the sources are Center
Factuality
To view factuality data please Upgrade to Premium








