2 min read

Hackers breach Quora to steal 100 million user accounts – if you were logged out, change your password now!

Filip TRUȚĂ

December 04, 2018

Ad One product to protect all your devices, without slowing them down.
Free 90-day trial
Hackers breach Quora to steal 100 million user accounts – if you were logged out, change your password now!

Question-and-answer website Quora has issued an urgent warning to 100 million of its users, notifying them that hackers now have their data as a result of a breach.

“We are writing to let you know that we recently discovered that some user data was compromised as a result of unauthorized access to our systems by a malicious third party,” reads the email, signed The Quora Team. “We are very sorry for any concern or inconvenience this may cause. We are working rapidly to investigate the situation further and take the appropriate steps to prevent such incidents in the future.”

Quora says it discovered the breach Friday and has since enlisted the help of leading digital forensics and security experts to get to the bottom of the issue. It has also notified authorities of the breach.

“We believe we”ve identified the root cause and taken steps to address the issue, although our investigation is ongoing and we”ll continue to make security improvements,” the company says.

The hackers obtained account and user information (name, email, IP, user ID, encrypted password, user account settings, personalization data), public actions and content (drafts, questions, answers, comments, blog posts, up-votes), data imported from linked networks (contacts, demographic information, interests, as well as non-public actions like answer requests, down-votes, and thanks). Anonymous users are not affected by the breach.

Quora said it is logging out all users who may have been affected in “an abundance of caution.” Affected users will also see their passwords invalidated, the company said, meaning they will have to set new passwords to continue using the service.

Users who have more specific questions about the breach can visit this FAQ.

In a blog post, Quora CEO Adam D’Angelo extended a personal apology to affected users on behalf of his company, saying:

“It is our responsibility to make sure things like this don”t happen, and we failed to meet that responsibility. We recognize that in order to maintain user trust, we need to work very hard to make sure this does not happen again. There”s little hope of sharing and growing the world”s knowledge if those doing so cannot feel safe and secure, and cannot trust that their information will remain private. We are continuing to work very hard to remedy the situation, and we hope over time to prove that we are worthy of your trust.”

tags


Author



Right now

Top posts

Enhance your cyber resilience and privacy on Computer Security Day in four easy steps

Enhance your cyber resilience and privacy on Computer Security Day in four easy steps

November 29, 2022

2 min read
How to monitor your online privacy during your Thanksgiving trip

How to monitor your online privacy during your Thanksgiving trip

November 22, 2022

3 min read
Just your yearly dose of Black Friday spam: Cybercrooks get ahead of the game to steal shoppers’ info

Just your yearly dose of Black Friday spam: Cybercrooks get ahead of the game to steal shoppers’ info

November 16, 2022

6 min read
Bitdefender VPN in 2022: the new, the improved, and the soon-to-be

Bitdefender VPN in 2022: the new, the improved, and the soon-to-be

November 14, 2022

5 min read
Cyber Tips for a Spook-Free Halloween

Cyber Tips for a Spook-Free Halloween

October 26, 2022

3 min read
August Spam Debrief: Bitdefender Labs Warns of Fraud Campaigns Exploiting the Russia-Ukraine War

August Spam Debrief: Bitdefender Labs Warns of Fraud Campaigns Exploiting the Russia-Ukraine War

August 31, 2022

4 min read

FOLLOW US ON

SOCIAL MEDIA


You might also like

Hacking cars remotely with just their VIN Hacking cars remotely with just their VIN
Graham CLULEY

December 05, 2022

2 min read
Russian courts attacked by CryWiper malware that poses as ransomware Russian courts attacked by CryWiper malware that poses as ransomware
Graham CLULEY

December 05, 2022

2 min read
Android App in Google Play Store Was Harvesting SMS Messages Helping Criminals Create New Accounts Android App in Google Play Store Was Harvesting SMS Messages Helping Criminals Create New Accounts
Silviu STAHIE

December 02, 2022

1 min read