My Fitness Pal has just released information pertaining to a data breach.
MyFitnessPal is a free smartphone app and website that tracks diet and exercise to determine optimal caloric intake and nutrients for the users’ goals and uses gamification elements to motivate users. Users can either scan the barcodes of various food items or manually add them in the database of over five million different foods. Working in conjunction with over 50 devices and apps including Fitbit and Garmin wearable devices users can synchronize their health data to third-party devices for easier mobility. In a Consumer Reports diet rating, MyFitnessPal was rated the best free program (with 83 points) in overall satisfaction, “maintenance, calorie awareness, and food variety”.
In February 2015, Under Armour acquired MyFitnessPal
If you are registered with the My Fitness Pal app you should have received a email with a statement from MyFitness Pal, INC
The statement is as follows.
NOTICE OF DATA BREACH
To the MyFitnessPal Community:
We are writing to notify you about an issue that may involve your MyFitnessPal account information. We understand that you value your privacy and we take the protection of your information seriously.
On March 25, 2018, we became aware that during February of this year an unauthorized party acquired data associated with MyFitnessPal user accounts.
What Information Was Involved?
The affected information included usernames, email addresses, and hashed passwords – the majority with the hashing function called bcrypt used to secure passwords.
What We Are Doing
Once we became aware, we quickly took steps to determine the nature and scope of the issue. We are working with leading data security firms to assist in our investigation. We have also notified and are coordinating with law enforcement authorities.
We are taking steps to protect our community, including the following:
We are notifying MyFitnessPal users to provide information on how they can protect their data.
We will be requiring MyFitnessPal users to change their passwords and urge users to do so immediately.
We continue to monitor for suspicious activity and to coordinate with law enforcement authorities.
We continue to make enhancements to our systems to detect and prevent unauthorized access to user information.
What You Can Do
We take our obligation to safeguard your personal data very seriously and are alerting you about this issue so you can take steps to help protect your information. We recommend you:
Change your password for any other account on which you used the same or similar information used for your MyFitnessPal account.
Review your accounts for suspicious activity.
Be cautious of any unsolicited communications that ask for your personal data or refer you to a web page asking for personal data.
Avoid clicking on links or downloading attachments from suspicious emails.
For More Information
Chief Digital Officer
Under Armour said on Thursday that data from some 150 million MyFitnessPal diet and fitness app accounts was compromised in February, in one of the biggest hacks in history.
Under Armour found out about the data breach 4 days ago, although the breach occurred sometime in February.
The hack may have something to do with using your Facebook log in to log into MyFitness pal speculators has suggested.
Under Armour urges all users of the app to change their passwords ASAP!