The Baltimore Sun reports that information exposed by the breach includes usernames and email addresses, as well as encrypted passwords. It’s unclear at this time how much, if any, users biometric data was also affected.
MyFitnessPal alerted users of the breach this afternoon. Under Armour said it first learned of the MyFitnessPal breach in late February.
“The affected data did not include government-issued identifiers (such as Social Security numbers and driver’s license numbers), which the company does not collect from users,” Under Armour said in a statement. “Payment card data was also not affected because it is collected and processed separately.”
As in any data breach, users of MyFitnessApp are advised to change their passwords as soon as possible.