Back To Breaches

MyFitnessPal

In February 2018, the diet and exercise service MyFitnessPal suffered a data breach. The incident exposed 144 million unique email addresses alongside usernames, IP addresses and passwords stored as SHA-1 and bcrypt hashes (the former for earlier accounts, the latter for newer accounts). In 2019, the data appeared listed for sale on a dark web marketplace (along with several other large breaches) and subsequently began circulating more broadly. The data was provided to HIBP by a source who requested it to be attributed to "BenjaminBlue@exploit.im".

Domain: myfitnesspal.com
Breach Count: 143,606,147
Breach Date: Feb. 1, 2018
Added: Feb. 21, 2019

Verified: True
Fabricated: False
Events: 0
Source: HaveIBeenPwned

Data types: Email addresses IP addresses Passwords Usernames

Timeline

myfitnesspal.com Feb. 1, 2018

MyFitnessPal suffered from a data breach.

myfitnesspal.com Feb. 21, 2019

The breach MyFitnessPal was added to the database.

Check your email for data breaches

MyFitnessPal

Timeline