Under Armour received praise from security professionals for its response to the MyFitnessPal data breach compromising the information of 150 million users, SC Media reports. The company was commended for separating payment information from profile information, notifying affected users quickly, and for the hashing protocol it used for its passwords. Despite the praise, the company may still have found itself in trouble had the breach occurred after the EU General Data Protection Regulation goes into effect. “Under Armour claims that no government-issued identifiers were exposed in this breach,” STEALTHbits Technologies Vice President of Product Strategy Gabriel Gumbs said. “If this breach occurred 57 days from today, when GDPR enforcement begins, the EU's Information Commissioner's Office would draw no distinction as to whether the identifying data was government-issued or not.”
If you want to comment on this post, you need to login.