Usernames, e-mail addresses, and password information for 150 million users were exposed in the data breach.
Under Armor's MyFitnessPal service has suffered a data breach affecting approximately 150 million users.
The violation occurred in late February and an "unauthorized party" accessing usernames, email addresses and password details, said Under Armor on Friday. Fortunately, the suspended passwords were jumbled with the bcrypt hashing algorithm that makes them crack. " The payment card details were also unaffected as they are collected and processed separately."
For security reasons, Under Armor recommends MyFitnessPal users to change their passwords for all other Internet accounts used the same credentials. The usernames and email addresses in the data breach were encrypted using an older hashing algorithm called SHA-1
"Check your accounts for suspicious activity," the company said in an FAQ about the violation. "Be wary of unsolicited communications that ask for your personal information or refer you to a website that asks for personal information."
Under Armor first heard of the incident on Sunday, which triggered a major investigation. The company alerts the MyFitnessPal community about the email violation and in-app messaging.
Who's behind the hack is not known, but the company's investigation continues and law enforcement is now involved. To ensure user safety, the MyFitnessPal service provides password resets to all users.
MyFitnessPal works through a website and a mobile app and the service is designed to help you lose weight. It has a calorie counter for more than 5 million foods. In 2015, Under Armor bought the platform for $ 475 million.