Apparently it is possible to perform a denial-of-service attack on someone's paypal account, just by trying to log in repeatedly with an incorrect password.
There has been a delay in issuing PayPal payments. Our login used for mass disbursement has been locked for security reasons. The account is not frozen. PayPal detected multiple attempted unauthorized logins and locked the login. For security reasons we have chosen to not allow login unlocks by email so it requires a delay and authentication offline. There is no risk to company funds. Using our limited access login I have verified that there has been no unauthorized disbursements and the account balance matches our internal records. We use two factor authentication to protect our PayPal and exchange accounts for this reason.
In speaking with PayPal corporate support, login access for fund disbursement to be restored within the hour.
Staff
Tangible Cryptography
