Under Armour, the athletic wear company, made public on Thursday details of a massive data breach, with hackers gaining access to data from its popular app, MyFitnessPal.
The breach, which took place late February 2018, affected approximately 150 million user accounts.
The good news is that no key personal identifiers, such as Social Security numbers or driver’s license numbers, were affected, the company said. Under Armour said it does not ask customers for this type of information. Payment card data was also not affected because it is collected and processed separately, Under Armour said.
“The company’s investigation is ongoing, but indicates that approximately 150 million user accounts were affected by this issue,” Under Armour says in a statemtn.
Here’s more from Under Armour’s statement:
“Four days after learning of the issue, the company began notifying the MyFitnessPal community via email and through in-app messaging. The notice contains recommendations for MyFitnessPal users regarding account security steps they can take to help protect their information. The company will be requiring MyFitnessPal users to change their passwords and is urging users to do so immediately.”
The customer information that was accessed includes:
- Email addresses
- Hashed passwords (the majority with the hashing function called bcrypt used to secure passwords.)