In February 2018, the diet and exercise service MyFitnessPal suffered a data breach. The incident exposed 144 million unique email addresses alongside usernames, IP addresses and passwords stored as SHA-1 and bcrypt hashes (the former for earlier accounts, the latter for newer accounts). In 2019, the data appeared listed for sale on a dark web marketplace (along with several other large breaches) and subsequently began circulating more broadly.
| Domain | Entries | Date Breached | Hashing | Privacy | acknowledged? |
|---|---|---|---|---|---|
| https://myfitnesspal.com | 143,606,147 | 2018-02-01 | SHA-1 | Public | Yes |
Information leaked
Email addresses, IP addresses, Passwords, Usernames
Notice any errors/mistakes in this breach entry? Please contact us and we will fix it ASAP. We strive to be the best and most accurate, so your contribution(s) will be greatly appreciated.