Under Armour’s fitness tracking app was hacked by an unknown attacker back in February, exposing the usernames, email addresses and passwords of its 150 million users. Under Armour only became aware of the breach on March 25, and sent out a notification to its community four days later.
No credit card or other personal information is believed to have been accessed, as it is kept separately from username data, according to the company.
According to Engadget, Under Armour’s other apps, including Map My Run, which is used heavily by the running community, was not breached in the attack. But it may be worth changing your passwords anyhow.
MyFitnessPal was purchased by Under Armour in 2015 for a reported $475 million.