“We have reset the passwords of affected PayPal accounts and implemented enhanced security controls that will prompt you to set a new password the next time you log into your account,” PayPal said in a statement. Affected users will receive a free identity monitoring service from Equifax for two years.
In addition, PayPal recommends users to enable Two-Factor Authentication Protection (2FA) in the Account Settings menu, which can prevent unauthorized persons from accessing an account even if they have a valid username and password.
Basically, users should choose their passwords in such a way that they are not easy to crack. Secure passwords contain a combination of letters, numbers and special characters. They should be at least twelve characters long and the letters should be used in upper and lower case. Also, it makes sense not to use the names of children, spouses, or pets. A random combination of characters makes more sense.
