PayPal app code error leaked personal info and a 'few' unauthorized transactions

PayPal has notified about 100 customers that their personal information was exposed online during a code change gone awry, and in a few of these cases, people saw unauthorized transactions on their accounts.

All of these customers have been fully refunded, according to a PayPal spokesperson.

"When there is a potential exposure of customer information, PayPal is required to notify affected customers," the spokesperson told The Register. "In this case, PayPal's systems were not compromised. As such, we contacted the approximately 100 customers who were potentially impacted to provide awareness on this matter."

According to a February 10 data breach notification sent to affected customers and shared with The Register, the online payment company spotted the unauthorized activity on December 12. It was due to a coding error in its PayPal Working Capital loan application that inadvertently leaked customers' business contact information - including names, Social Security numbers, dates of ...