Under Armor Admits Huge Data Leak in MyFitnessPal App

Under Armor Admits Huge Data Leak in MyFitnessPal App

Under Armor has admitted that nearly 150 million users of the smartphone application "MyFitnessPal" were hacked.

  • By Sydny Shepard
  • Apr 03, 2018

Under Armor has admitted to a huge data leak in its smartphone application, "MyFitnessPal." The company says around 150 million users were hacked in February of this year.

The sports company stated that "an unauthorized party acquired data associated with MyFitnessPal user accounts" occurred in Feb. 2018 but it only became aware of the breach last week.

"The company quickly took steps to determine the nature and scope of the issue and to alert the MyFitnessPal community of the incident," a statement said.

The data includes usernames, passwords and email addresses, but did not reveal bank accounts, drivers license numbers or social security information.

"Four days after learning of the issue, the company began notifying the MyFitnessPal community via email and through in-app messaging," continued the statement. "The notice contains recommendations for MyFitnessPal users regarding account security steps they can take to help protect their information. The company will be requiring all MyFitnessPal users to change their passwords and is urging users to do so immediately."

"You might not think about the information you submit to fitness applications as sensitive, but if you're using the same password for other, more valuable applications, than the risk is really much more serious," Tim Erlin, VP, product management and strategy at Tripwire said. "Reusing passwords across multiple services and applications increased the risk of compromise."

This is the biggest data breach in 2018 so far, and Under Armor said it is "working with leading data security firms to assist in its investigation" as well as law enforcement authorities.  

The MyFitnessPal app lets users monitor their calorie intake and measure it against the amount of exercise they are doing. With a database of more than two million foods available to choose from.  

About the Author

Sydny Shepard is the Executive Editor of Campus Security & Life Safety.

Featured

  • Live from GSX 2024: Post-Show Recap

    Another great edition of GSX is in the books! We’d like to thank our great partners for this years event, NAPCO, LVT, Eagle Eye Networks and Hirsch, for working with us and allowing us to highlight some of the great solutions the companies were showcasing during the crowded show. Read Now

    • Industry Events
    • GSX

  • Research: Cybersecurity Success Hinges on Full Organizational Support

    Cybersecurity is the top technology priority for the vast majority of organizations, but moving from aspiration to reality requires a top-to-bottom commitment that many companies have yet to make, according to new research released today by CompTIA, the nonprofit association for the technology industry and workforce. Read Now

  • Live from GSX 2024: Day 3 Recap

    And GSX 2024 in Orlando, is officially in the books! I’d like to extend a hearty congratulations and a sincere thank-you to our partners in this year’s Live From program—NAPCO, Eagle Eye Networks, Hirsch, and LVT. Even though the show’s over, keep an eye on our GSX 2024 Live landing page for continued news and developments related to this year’s vast array of exhibitors and products. And if you’d like to learn more about our Live From program, please drop us a line—we’d love to work with you in Las Vegas at ISC West 2025. Read Now

    • Industry Events
    • GSX

  • Bringing New Goods to Market

    The 2024 version of GSX brought with it a race to outrun incoming hurricane Helene. With it’s eye on Orlando, it seems to have shifted and those security professionals still in Orlando now have a fighting chance to get out town. Read Now

    • Industry Events
    • GSX
Most   Popular

Featured Cybersecurity

Webinars

New Products

  • Camden CV-7600 High Security Card Readers

    Camden CV-7600 High Security Card Readers

    Camden Door Controls has relaunched its CV-7600 card readers in response to growing market demand for a more secure alternative to standard proximity credentials that can be easily cloned. CV-7600 readers support MIFARE DESFire EV1 & EV2 encryption technology credentials, making them virtually clone-proof and highly secure. 3

  • A8V MIND

    A8V MIND

    Hexagon’s Geosystems presents a portable version of its Accur8vision detection system. A rugged all-in-one solution, the A8V MIND (Mobile Intrusion Detection) is designed to provide flexible protection of critical outdoor infrastructure and objects. Hexagon’s Accur8vision is a volumetric detection system that employs LiDAR technology to safeguard entire areas. Whenever it detects movement in a specified zone, it automatically differentiates a threat from a nonthreat, and immediately notifies security staff if necessary. Person detection is carried out within a radius of 80 meters from this device. Connected remotely via a portable computer device, it enables remote surveillance and does not depend on security staff patrolling the area. 3

  • Unified VMS

    AxxonSoft introduces version 2.0 of the Axxon One VMS. The new release features integrations with various physical security systems, making Axxon One a unified VMS. Other enhancements include new AI video analytics and intelligent search functions, hardened cybersecurity, usability and performance improvements, and expanded cloud capabilities 3