MyFitnessPal has written to it’s users to inform them that back in February they were hacked and left its users vulnerable. In an email MyFitnessPal writes:
On March 25, 2018, we became aware that during February of this year an unauthorized party acquired data associated with MyFitnessPal user accounts. The affected information included usernames, email addresses, and hashed passwords – the majority with the hashing function called bcrypt used to secure passwords.
Once we became aware, we quickly took steps to determine the nature and scope of the issue. We are working with leading data security firms to assist in our investigation. We have also notified and are coordinating with law enforcement authorities.
As a result users are urged:
• Change your password for any other account on which you used the same or similar information used for your MyFitnessPal account.
• Review your accounts for suspicious activity.
• Be cautious of any unsolicited communications that ask for your personal data or refer you to a web page asking for personal data.
• Avoid clicking on links or downloading attachments from suspicious emails.