Skip to main content

Popular Fitness Site Endures A Customer Information Breach 

By May 17, 2019May 19th, 2022Cybersecurity

Do you frequent the website

If so, be advised that the site has been breached.

According to a recent statement by the company behind the site, the breach occurred in February, 2019 and had its origins in a phishing email the company received back in July of 2018.

A detailed account of the incident was published on the company’s help center and contained most of the elements we’ve come to expect when things like this happen:

  • The company is very sorry that it happened
  • “Certain” customer/member information may have been compromised
  • The company has been working with law enforcement and has brought in a third party to assist with the forensic investigation, which is ongoing

The company also stressed that while partial payment account numbers were compromised, no full debit or credit card information was at risk. That is because the site only stores the last four digits of payment cards if and when a given user opted to have the data stored by the website.

Again in keeping with the common response to incidents like these, reported that in exercising an abundance of caution, they are force-resetting all user passwords.  If it’s been a while since you’ve logged on, just be aware that the next time you do, you’ll be prompted to change your password.

As to the specific data that was compromised, according to the latest information posted by the company, the following information was accessed by unknown third parties:

  • User name
  • The email address you used to sign up for the service
  • Your billing and/or shipping address
  • Your phone number
  • Your order history
  • Your birthday
  • Any correspondence that may have occurred between you and the site administrators
  • Any other information you included in your profile

As ever, if you’re using the same password on this site that you use on some other, be sure to change both immediately. Try hard to break the habit of using the same password across multiple web properties.

Jason Manteiga

Jason J. Manteiga, Vice President of Olmec Systems, has been part of the company for over the past 20 years. He believes that having a great work environment and supportive team, is the ultimate key to success. Since being in the IT realm for over 25 years, Jason, along with Olmec Systems, has been on the Inc. 5000 “List of America’s Fastest Growing Private Companies” and Channel Futures MSP 501 “Top Managed Service Providers in North America,” along with other awards and nominations. Jason earned his Bachelor Degree in Information Systems from the New Jersey Institute of Technology. He also holds certifications in Microsoft MCSE, VMWare VCP, and Cisco CCNA. In his spare time, Jason is a contributor for The Center for Social & Legal Research (Privacy Exchange) and a member of the Morris County Chamber of Commerce. His hobbies include cycling and kayaking. He currently lives in New Jersey with his wife, two daughters and son.