If you use this app to track your macros and exercise, it’s time to change your password.
Under Armour announced on Thursday a data breach affecting at least 150 million users of MyFitnessPal, its food and nutrition app.
In a press release, the athletic apparel company said it became aware on March 25 of an unknown, “unauthorized third party” that collected information connected to user accounts in February.
“The investigation indicates that the affected information included usernames, email addresses, and hashed passwords —the majority with the hashing function called bcrypt used to secure passwords,” the company said.
As Mashable notes, it’s good news that the passwords were “hashed,” as this may mean accounts were not immediately compromised after the breach. However, the company is still requiring anyone who uses MyFitnessPal to change their passwords and encourages users to do so immediately.
Under Armour also said that other critical data like Social Security numbers and credit card information was not jeopardized in the hack.
“The affected data did not include government-issued identifiers (such as Social Security numbers and driver’s license numbers), which the company does not collect from users,” the press release said. “Payment card data was also not affected because it is collected and processed separately.”
Coming close on the heels of a major data scandal involving Facebook,news of the MyFitnessPal breach comes at a time when users across all social media and service apps are particularly wary of their personal information. It’s yet another reminder to keep close tabs on what you’re sharing and to create varied, smart passwords for different accounts.