The attack was discovered a few days ago, on March 25. Under Armor, who owns the service, is just taking steps to explain the circumstances of the security breach. Cooperation was established with companies that deal with cybersecurity.
Hackers have gained access to logins, e-mail addresses, and passwords. Fortunately, the latter was “hijacked” using bcrypt, which will probably make it difficult for cybercriminals to read their content. Nevertheless, having such a rich database of e-mail addresses may result in spam and scammer messages coming to service users.
Good practices saved the payment data of MyFitnessPal users
Despite the acquisition of data, Under Armor should be proud of the separation of payment data from stolen information. Cybercriminals did not have the opportunity to get access to, among others card numbers and security codes, so you should not be worried about the money accumulated on your accounts. To be sure of your security, either change your password now or use the link sent by MyFitnessPal in an e-mail in which you will be notified of this necessity. It is important that your new password is not used in any other service. What’s more, if you used the same security chain anywhere else, you should also try to increase the level of security in these services.