Back to Radar
GL

Glofox

High

March 2020: Glofox's breach exposed sensitive details of 2.3M users.

Records exposed
2,330,735 records
Breach date
Breach Mar 27, 2020
Last update
Updated Jan 10, 2021
Source

What data was exposed?

Fields reported as compromised in this breach record.

Dates of birthEmail addressesGendersNamesPasswordsPhone numbers

Why does this breach matter?

In-depth analysis of the breach and its implications.

In March 2020, Glofox, an Irish software company providing gym management solutions, was subject to a data breach that disclosed sensitive information of approximately 2.3 million customer records. The compromised data included personally identifiable information such as names, email addresses, phone numbers, genders, dates of birth, and passwords, which were stored using unsalted MD5 hashes, posing significant security risks.

Impact Analysis

Understanding the scope and consequences of this breach.

User Impact
Affected individuals faced increased risks of phishing attacks, account compromise, and identity theft.
Business Impact
The breach could have led to reputational damage, client distrust, and potential legal inquiries.
Affected Sectors
  • Fitness and Wellness
  • Software Development
Geographic Impact
  • International

What You Should Do

Recommended actions to take in response to this breach.

If You Were Affected

  • Change passwords on any accounts using the same credentials.
  • Be vigilant for phishing emails and scams.
  • Monitor account activity and consider a credit alert.

Preventive Measures

  • Organizations should use strong, salted, and iterative hashing algorithms.
  • Conduct regular security audits and vulnerability assessments.
  • Educate employees and stakeholders on best practices for data management.

Frequently Asked Questions

Common questions about this breach and what it means for you.

No financial data was reported as compromised. Only personal details were affected.