The MyFitnessPal app has been hacked, affecting 150 million customers. Parent company UnderArmour confirmed that a data breach had been exploited by hackers in February of this year, and warmed all customers that an unauthorised party had gained access to usernames, email addresses, and hashed passwords.
Social Security numbers, driver license numbers and payment card data were not compromised, it said.
UnderArmour have contacted law enforcement regarding the matter, and say that they are "working with leading data security firms to assist in our investigation".
In response to this leak, UnderArmour have advised MyFitnessPal users to change their passwords, and to change their passwords on any other accounts which use a similar password.
In addition to this, the company warned users to:
- Review your accounts for suspicious activity.
- Be cautious of any unsolicited communications that ask for your personal data or refer you to a webpage asking for personal data.
- Avoid clicking on links or downloading attachments from suspicious emails.
This hack is one of the largest in history, and the biggest of 2018 thus far. In response to the news, the company's shares were sent tumbling by 3% within hours of the publication of the news.
MyFitnessPal was purchased by UnderArmour for $475 million in 2015, and last year accounted for 1.8 percent of Under Armour’s $5 billion in total sales.