An intruder gained access to information, including hashed passwords, for 150 million users of its MyFitnessPal app and website. The identity of the intruder remains unknown, Under Armour reports. A majority of the passwords exposed were protected “with the hashing function called bcrypt,” the company says. Other exposed data, including usernames and email addresses, was protected by the much weaker SHA-1, a 160-bit hashing function. The company says it’s requiring users to change their passwords.”]
Source: https://www.cuinfosecurity.com/under-armour-reports-massive-breach-myfitnesspal-app-a-10756