CutOut.Pro AI Tool 20 million user records breached, users should reset passwords

Cutout.Pro has has been reported to have suffered a significant data breach. Cutout.Pro is an AI-powered photo and video editing platform known for its capabilities in enhancing images, removing backgrounds, and generating content.

The breach came to light when an individual using the alias 'KryptonZambie' shared links on the BreachForums hacking forum to CSV files containing 5.93 GB of data, which appears to be a database dump from Cutout.Pro, comprising 41.4 million records, of which 20 million contain unique email addresses. It was also mentioned that the cybercriminal still had access to the breached system at the time of data publication.

The breach is said to have exposed the personal information of nearly 20 million users. The leaked data includes sensitive information such as:

• email addresses,
• hashed and salted passwords,
• IP addresses,
• names,
• user IDs,
• profile pictures,
• API access keys,
• account creation dates,
• mobile phone numbers,
• user types,
• account statuses.

Despite the hacker's claims, Cutout.Pro's marketing department has denied any evidence of a breach, calling it a "clear scam." They stated they had not received any emails from users regarding account hacks or information leaks. Which is a very convoluted PR answer.

There is no clarity on the nature of the attack that caused the breach.

The presence of email addresses associated with Cutout.Pro domains within the leaked data, along with the data set being considered verified and published on the Have I Been Pwned (HIBP) platform suggests that the breach is legitimate and affects Cutout.Pro users.

Users of Cutout.Pro are advised to reset their passwords and be vigilant against potential phishing scams.