Pixlr is a very popular free online photo editing software that has many of the same features as found in professional editors like Photoshop. The site is free to use for basic editing, but also offers a premium subscription that gives users access to more advanced editing tools. An attacker has now leaked approximately 1.4 million user records that contain information that could be used to perform credential stuffing attacks and targeted phishing campaigns. The threat actor known as ShinyHunters shared the database for free on a known hacking forum that he claims was stolen from Pixlr when he breached the 123rf stock photo site which happens to be owned by the same company, Inmagine. ShinyHunters is a well-known attacker and has been responsible for data breaches at Tokepedia, Homechef, Minted, Chatbooks, Dave, Promo, Mathway, Wattpad, and many more. The alleged leak contains over 1.4 million user records containing email addresses, login names, SHA-512 hashed passwords, user’s country, and other internal information. ShinyHunters stated the database was downloaded from the company’s AWS bucket at the end of 2020. BleepingComputer has confirmed that some of the leaked email addresses in the database are registered Pixlr members.