150 Million MyFitnessPal Accounts Breached
This weekend, Under Armour announced that 150 million accounts on their app MyFitnessPal had been exposed or compromised. As of right now, we don't know too many details about how the breach actually took place. We can probably assume that the attack was carried out by the cybercriminal gaining access to the information via legitimate credentials gained by exploitation like phishing or a keylogger. This is how many of the recent major data breaches have taken place, including the breaches at Yahoo, Uber, and Equifax.
On the bright side, Under Armour broke from the common trend of taking weeks or months to announce the breach, and let users know about the breach just days after it took place. This whole saga though goes to show that organizations and companies need to focus more keeping up to date with how they think about security. Training on how to spot phishing has become more important than ever, and organizations can no longer just rely on traditional Antivirus and telling their employees to not click on links that obviously look suspicious.