Under Armour MyFitnessPal Hack Affects 150 Million User Accounts

March 29, 2018

Under Armour said MyFitnessPal, its health-and-fitness tracking app, was affected in a significant data beach, compromising as many as 150 million accounts.

Under Armour said in a statement, “On March 25, the MyFitnessPal team became aware that an unauthorized party acquired data associated with MyFitnessPal user accounts in late February 2018. The company quickly took steps to determine the nature and scope of the issue and to alert the MyFitnessPal community of the incident.”

Under Armour added that it is working with leading data security firms to assist in its investigation, and also coordinating with law enforcement authorities. The investigation indicates that the affected information included usernames, e-mail addresses and hashed passwords, the majority with the hashing function, called bcrypt, used to secure passwords.

They claimed the affected data did not include government-issued identifiers (such as social security numbers and driver’s license numbers), which the company does not collect from users. Payment card data was also not affected because it is collected and processed separately.

Under Armour said, “The company’s investigation is ongoing, but indicates that approximately 150 million user accounts were affected by this issue.”

Four days after learning of the issue, the company said it began notifying the MyFitnessPal community via e-mail and through in-app messaging. The notice contains recommendations for MyFitnessPal users regarding account security steps they can take to help protect their information. The company will be requiring MyFitnessPal users to change their passwords and is urging users to do so immediately.

Additional information about this issue is available at https://content.myfitnesspal.com/security-information/FAQ.html.

MyFitnessPal tracks weight and calculates the user’s daily recommended calorie intake. It has a huge nutrition data base with over five million foods.

Under Armor acquired the nutrition-tracking platform in 2015 for $475 million. When it was acquired, MyFitnessPal had 80 million users and it has since doubled in size. Also acquiring Endomondo at the time, Under Armour used the two platforms to create its Connected Fitness business. Connected Fitness also includes MayMyFitness.

Photo courtesy Under Armour

Under Armour MyFitnessPal Hack Affects 150 Million User Accounts

SGB Update

Eagle Claw Fishing Tackle, Co. Names New Chairman

Cotopaxi Names New CFO/COO as Roles Shift in Top Company Leadership

Nordstrom Family Members Look to Take Namesakes Retailer Private Again

The Picklr to Open New Club in Indianapolis

Kent Outdoors Hires Rob Otto as CFO

Topgolf Opens New Three-Story Venue East of Los Angeles

NRF Promotes Adam Lukoskie to Senior VP

The UK Gets a New Surf Shop in Cornwall

NBDA Appoints Andrew Feenstra First Vice Chair of Board of Directors

Goodyear Taps Into Look & Corima USA Network for U.S. Bike Tire Distribution

Anechoic Names Regional Sales Director for TALO Territory

Fanatics Inks Retail and Merchandise Partnership with Laver Cup

Robert E. Griffin, Former CEO and Chair of Escalade, Inc. Passes Away

Brixton Taps Former Levi’s, Hurley and Quiksilver Exec as New CEO

Boston Pickle Club to Officially Open in Boston’s Hyde Park