Myfitnesspal Data Breach - Why tell users well after the event?
So it appears another big platform used my many people has had a data breach. It appears that on March 25th they found out they had a serious breach back in February when a large amount of customer data was stolen.
Again with these, if they knew on March 25th, why are the users finding out weeks after the event, its all well saying we are trying to look after our users so please change your password etc, but the actual breach was back in February so by now the details could of already been used many times and spread far and wide across the internet.
These should be reported as soon as they know they have been breached.
If you want to read their full statement you can here - https://content.myfitnesspal.com/security-information/FAQ.html
I am always interested in your thoughts so if you have any comments or feedback then please feel free to add any comments, or you can mail me here.