Popular fitness application ‘MyFitnessPal’ announced late last night that they had suffered a massive data breach on March 25th 2018, which affected 150 million user accounts. Information such as usernames, email addresses, and “hashed” passwords (which means its harder for the unauthorised party to disipher) had all been leaked.
In a statement on the MyFitnessPal website, Under Armour say:
“Once we became aware, we quickly took steps to determine the nature and scope of the issue. We are working with leading data security firms to assist in our investigation. We have also notified and are coordinating with law enforcement authorities.”
MyFitnessPal users are being contacted and are being made aware of the breach, and are required to change their password on the popular fitness application. It’s also being recommended that users change passwords on any other services where the same password and email address was used.
The company say that the affected data did not include any government issued identifiers, such as social security numbers or drivers licences.
“The affected data did not include government-issued identifiers (such as Social Security numbers and driver’s license numbers) because we don’t collect that information from users. Payment card data was not affected because it is collected and processed separately.”
At present, Under Armour are not aware of the identity of those responsibile for the breach but ensure that an investigation with law enforcement is ongoing.
The best advice we have, is change all your passwords as soon as possible and enable two factor authentication on all accounts (if available.) Read our article on digital security here.