/

What happened in the Glofox data breach?

What happened in the Glofox data breach?

Twingate Team

Apr 11, 2024

In March 2020, Glofox, an Irish gym management software company, experienced a data breach. Some gyms using the platform reassured members that the entry point for the breach had been identified and closed. As a precaution, gyms advised members to reset their passwords.

How many accounts were compromised?

The breach impacted data related to approximately 2.33 million individuals.

What data was leaked?

The data exposed in the breach consisted of dates of birth, email addresses, genders, names, passwords, and phone numbers.

How was Glofox hacked?

The Glofox data breach was reportedly carried out by the well-known hacking group ShinyHunters, who gained unauthorized access to the company's databases.

Glofox's solution

In response to the data breach, Glofox took immediate action by identifying and closing the path that led to the unauthorized access, effectively addressing the exploited vulnerability. Additionally, gyms using the Glofox platform advised members to reset their passwords as a precautionary measure.

How do I know if I was affected?

Glofox actively communicated with affected customers via Twitter, indicating that they reached out to those believed to be impacted by the breach. If you're a Glofox user and haven't received a notification, you may visit HaveIBeenPwned, a platform that monitors data breaches and can notify individuals if their data has been disclosed in recognized data leaks.

What should affected users do?

In general, affected users should:

  1. Change Your Password: Immediately update your password for the breached platform. Make sure the new password is strong and unique, not previously used on any other platform.

  2. Reset Passwords for Other Accounts: If you've used the same or similar passwords for other online accounts, reset those as well. This is crucial as attackers often try using stolen passwords on multiple sites.

  3. Enable Two-Factor Authentication (2FA): Activate 2FA on the breached platform and consider enabling this additional security feature on all other important online accounts to significantly reduce the risk of unauthorized access.

For specific advice on Glofox's data breach, please contact Glofox's support directly.

Where can I go to learn more?

If you want to find more information on the Glofox data breach, check out the following news articles:

Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.

/

What happened in the Glofox data breach?

What happened in the Glofox data breach?

Twingate Team

Apr 11, 2024

In March 2020, Glofox, an Irish gym management software company, experienced a data breach. Some gyms using the platform reassured members that the entry point for the breach had been identified and closed. As a precaution, gyms advised members to reset their passwords.

How many accounts were compromised?

The breach impacted data related to approximately 2.33 million individuals.

What data was leaked?

The data exposed in the breach consisted of dates of birth, email addresses, genders, names, passwords, and phone numbers.

How was Glofox hacked?

The Glofox data breach was reportedly carried out by the well-known hacking group ShinyHunters, who gained unauthorized access to the company's databases.

Glofox's solution

In response to the data breach, Glofox took immediate action by identifying and closing the path that led to the unauthorized access, effectively addressing the exploited vulnerability. Additionally, gyms using the Glofox platform advised members to reset their passwords as a precautionary measure.

How do I know if I was affected?

Glofox actively communicated with affected customers via Twitter, indicating that they reached out to those believed to be impacted by the breach. If you're a Glofox user and haven't received a notification, you may visit HaveIBeenPwned, a platform that monitors data breaches and can notify individuals if their data has been disclosed in recognized data leaks.

What should affected users do?

In general, affected users should:

  1. Change Your Password: Immediately update your password for the breached platform. Make sure the new password is strong and unique, not previously used on any other platform.

  2. Reset Passwords for Other Accounts: If you've used the same or similar passwords for other online accounts, reset those as well. This is crucial as attackers often try using stolen passwords on multiple sites.

  3. Enable Two-Factor Authentication (2FA): Activate 2FA on the breached platform and consider enabling this additional security feature on all other important online accounts to significantly reduce the risk of unauthorized access.

For specific advice on Glofox's data breach, please contact Glofox's support directly.

Where can I go to learn more?

If you want to find more information on the Glofox data breach, check out the following news articles:

Rapidly implement a modern Zero Trust network that is more secure and maintainable than VPNs.

What happened in the Glofox data breach?

Twingate Team

Apr 11, 2024

In March 2020, Glofox, an Irish gym management software company, experienced a data breach. Some gyms using the platform reassured members that the entry point for the breach had been identified and closed. As a precaution, gyms advised members to reset their passwords.

How many accounts were compromised?

The breach impacted data related to approximately 2.33 million individuals.

What data was leaked?

The data exposed in the breach consisted of dates of birth, email addresses, genders, names, passwords, and phone numbers.

How was Glofox hacked?

The Glofox data breach was reportedly carried out by the well-known hacking group ShinyHunters, who gained unauthorized access to the company's databases.

Glofox's solution

In response to the data breach, Glofox took immediate action by identifying and closing the path that led to the unauthorized access, effectively addressing the exploited vulnerability. Additionally, gyms using the Glofox platform advised members to reset their passwords as a precautionary measure.

How do I know if I was affected?

Glofox actively communicated with affected customers via Twitter, indicating that they reached out to those believed to be impacted by the breach. If you're a Glofox user and haven't received a notification, you may visit HaveIBeenPwned, a platform that monitors data breaches and can notify individuals if their data has been disclosed in recognized data leaks.

What should affected users do?

In general, affected users should:

  1. Change Your Password: Immediately update your password for the breached platform. Make sure the new password is strong and unique, not previously used on any other platform.

  2. Reset Passwords for Other Accounts: If you've used the same or similar passwords for other online accounts, reset those as well. This is crucial as attackers often try using stolen passwords on multiple sites.

  3. Enable Two-Factor Authentication (2FA): Activate 2FA on the breached platform and consider enabling this additional security feature on all other important online accounts to significantly reduce the risk of unauthorized access.

For specific advice on Glofox's data breach, please contact Glofox's support directly.

Where can I go to learn more?

If you want to find more information on the Glofox data breach, check out the following news articles: