Sports apparel company Under Armour Inc. said March 29 that hackers accessed information of about 150 million users of its online fitness and nutrition website and application, MyFitnessPal.
On March 25, the MyFitnessPal team discovered that an unauthorized party had accessed MyFitnessPal user data in February.
Affected information includes usernames, email addresses and encrypted passwords.
Under Armour noted that it is working with leading data security firms to assist in its investigation, and also coordinating with law enforcement.
Payment data was not affected because Under Armour collects and processes that information separately. Affected information also did not include government-issued identifiers, such as social security numbers and driver's license numbers, which the company does not collect from users.
The Baltimore-based company has been notifying MyFitnessPal users via emails and in-app messages since it found out about the breach. It is also urging customers to change their passwords immediately.
Previously, online travel agency Expedia Inc. unit Orbitz identified a possible data breach that may have affected 880,000 payment cards.