MyFitnessPal
What was exposed
Email addressesIP addressesPasswordsUsernames
What to do if you were affected
- Change your password for this account, and anywhere you reused it. Turn on two-factor authentication.
- Expect more phishing and spam at this address. Treat messages that reference this company with extra caution.
- Be wary of targeted scams that use your personal details to sound convincing.
Details
In February 2018, the diet and exercise service MyFitnessPal suffered a data breach . The incident exposed 144 million unique email addresses alongside usernames, IP addresses and passwords stored as SHA-1 and bcrypt hashes (the former for earlier accounts, the latter for newer accounts). In 2019, the data appeared listed for sale on a dark web marketplace (along with several other large breaches) and subsequently began circulating more broadly.
Frequently asked questions
What is the MyFitnessPal data breach?
In February 2018, the diet and exercise service MyFitnessPal suffered a data breach . The incident exposed 144 million unique email addresses alongside usernames, IP addresses and passwords stored as SHA-1 and bcrypt hashes (the former for earlier accounts,...
When did the data breach happen?
This data breach occurred around February 2018.
How many accounts were affected?
Around 143,606,147 accounts were affected.
What information was exposed?
Exposed data included Email addresses, IP addresses, Passwords and Usernames.
What should I do if I was affected?
Change your password for this account, and anywhere you reused it. Turn on two-factor authentication. Expect more phishing and spam at this address. Treat messages that reference this company with extra caution. Be wary of targeted scams that use your personal details to sound convincing.
Related breaches