Some 150 million users of a fitness app have been affected by a data security breach.

The Baltimore-based Under Armour said its MyFitnessPal was attacked in February.

According to the Baltimore Sun, owners of the fitness and nutrition app became aware of the breach on 25 March and have warned users to change their passwords.

Under Armour said the investigation indicated that affected information includes usernames, email addresses and hashed passwords.

It said government-issued identifiers, such as social security numbers, were not hit.


These types of information are not collected from the app's users.

Payment card data, which is collected and processed separately, was also not affected.

In a statement, the company said: "Once we became aware, we quickly took steps to determine the nature and scope of the issue.

"We are working with leading data security firms to assist in our investigation.

"We have also notified and are coordinating with law enforcement authorities."