Under Armour has notified users of its MyFitnessPal, a food and nutrition application and website, about a data breach of customer personal data. Affected information includes usernames, email addresses, and hashed passwords. The company said the majority of hashed passwords were protected using the bcrypt hashing algorithm.
Approximately 150 million user accounts were affected by the security incident, according to Under Armour.
“On March 25, the MyFitnessPal team became aware that an unauthorized party acquired data associated with MyFitnessPal user accounts in late February 2018. The company quickly took steps to determine the nature and scope of the issue and to alert the MyFitnessPal community of the incident,” the company stated.
The company also said no payment card data or social security numbers were impacted by the breach.
A frequently asked questions (FAQs) page was also provided to include more details on the incident and user guidance. Users are strongly urged to change their MyFitnessPal account passwords immediately, if they haven’t already since Under Armour first notified affected users of this incident.