Yet another mega-leak: 100 million Quora accounts compromised by system invaders

Gladys Abbott
December 4, 2018

The organisation announced on Monday this week: "On Friday we discovered that some user data was compromised by a third party who gained unauthorized access to one of our systems".

Quora chief executive Adam d'Angelo, who founded the forum after leaving Facebook where he was the chief technology officer, said the account information taken includes names, email addresses, encrypted passwords and data imported from linked networks when users authorise these.

"Public content and actions, e.g. questions, answers, comments, upvotes [as well as] non-public content and actions, e.g. answer requests, downvotes, direct messages".

"Questions and answers that were written anonymously are not affected by this breach as we do not store the identities of people who post anonymous content", Quora said in the post.

What's more, there have been some reports that Quora was creating profiles for users based off their linked accounts without their knowledge. In case you wish to delete your account and all the data associated with it, follow this link.

Quora has started notifying users whose data has been compromised, and will log them out of the site "out of an abundance of caution". The company insists that only a low percentage of Quora users have sent or received such messages.

More news: Oklahoma, Alabama, Notre Dame, Clemson in

"We have engaged leading digital forensic and security experts and launched an investigation, which is ongoing".

The company is now in the process of logging out and invalidating users who may have been affected.

It also said that the root cause has been identified, with steps being taken to address the issue.

Quora has posted an extensive FAQ explaining details of the data breach, but the FAQ doesn't mentioned how user passwords were hashed, i.e. run through a one-way encryption algorithm.

If you think you have a Quora account, the best thing to do is change your password. "We have notified law enforcement officials".

Other reports by LeisureTravelAid

Discuss This Article