San Francisco, January 21
A hacker often known as ShinyHunters has leaked 1.9 million person information stolen from free on-line photograph modifying utility Pixlr.
The database launched without cost in a hacking discussion board comprises info that might be utilized by risk actors for performing focused phishing and credential stuffing assaults, BleepingComputer reported on Wednesday.
The leaked person information consist of data resembling e-mail addresses, login names, SHA-512 hashed passwords, the place a person relies, whether or not they signed up for the publication, and so on.
ShinyHunters claims to have stolen the database from Pixlr whereas he broke into the 123rf inventory photograph web site.
An organization referred to as Inmagine owns each Pixlr and 123rf.
ShinyHunters has been concerned in breaching a number of organisations up to now, together with Tokopedia, Homechef, Minted, Chatbooks, Dave, Promo, Mathway, Wattpad, mentioned the report.
The risk actor mentioned he downloaded the database from the corporate’s AWS bucket on the finish of 2020.
The sharing of the info base without cost on the hacking discussion board has earned ShinyHunters reward from different risk actors who frequent the platform as they might use the person information for their very own malicious actions.
Whereas Pixlr was but to answer report of the leaked database, BleepingComputer mentioned it confirmed that most of the e-mail addresses within the database had been registered Pixlr members.
Out of an abundance of warning, Pixlr customers are suggested to right away change their passwords on the positioning. IANS