Fitness Gurus and Gym Junkies have been the target of 2018’s largest security data breach to date, with the popular exercise and nutrition tracking app MyFitnessPal falling victim to hackers.
Owned by Fitness Company Under Armour, MyFitnessPal is one of the many apps on the market people use to keep track of their fitness. But when the Company announced on April 4th that at least 150 million of its users’ accounts were hacked, we can only imagine that all that serotonin created by countless tracked hours of workouts was quickly snuffed out.
At least 150 million accounts were compromised when an “unauthorised party” tapped into user accounts during February, an email from the Company to its subscribers read. Under Armour says it doesn’t yet know who stole the data and the “investigation is ongoing”.
While the affected data didn’t include government-issued identifiers, such as Social Security numbers and driver’s license numbers, it did affect personal information including passwords, email addresses and user names.
Thankfully Under Armour has a protocol in place that protects client information such as birthdays, payment info. However, a lot of information can be gleaned from a hacked email account.
The company has urged its users to change their passwords to the MyFitnessPal app immediately and keep a keen eye out for any suspicious activity on their accounts. It also recommended users “be cautious of any unsolicited communications that ask for your personal data or refer you to a web page asking for personal data” and “avoid clicking on links or downloading attachments from suspicious emails”.
Under Armour is now working with police and data security firms to investigate the breach further and hopefully catch the hackers. Unfortunately, the damage seems to have been done, with users now questioning the security and trustworthiness of the app and stock in the company having dropped by 4 per cent since the announcement.
Once again, if you’re one of the fitness buffs with a MyFitnessPal account, we urge you to change your password and if you notice anything untoward on your account, notify the company directly and as soon as possible! It doesn’t matter if you can run a marathon in under 3 hours or squat 140kgs, even the fittest and strongest of us can get beaten down by cyber hackers – where’s the justice in that?!