Quora has been hacked. The result is that up to 100 million users of Quora may have had access to their data by a third party still unknown. Quora is actively investigating the incident and has already taken several steps to improve its security.
For the uninitiated, Quora is a question and answer websitethat combines people who have questions with people who have the answers. It's a fascinating website, and you're guaranteed to learn something new every time you visit it. Including that Quora has suffered a data breach.
Quora reveals that it has been hacked
Quora's CEO, Adam D'Angelo, revealed the incident in this Quora Security Update. In the publication, revealed that "a malicious third party has compromised some user data as a result of unauthorized access to one of our systems."
We have discovered that some user data was compromised by unauthorized access to our systems. We have taken measures to ensure that the situation is contained and we are notifying affected users. Protecting your information is our top priority. Read more here: https://t.co/uwbdMjoM1v[19659010◆-Quora(@Quora) December 3, 2018
The hacker obtained unauthorized access to one of the Quora systems. And certain information for "approximately 100 million users of Quora" may have been compromised. This information includes:
- The name, email address, and encrypted password that you have associated with your account. Fortunately, Quora has declared that passwords are "encrypted with bcrypt with a salt that varies for each user".
- Public content and actions, which means the questions, answers, comments and upvotes that you have made on the site.
Content and non-public actions, which means response requests, down votes and direct messages that are not otherwise visible.
There is also the risk that "data imported from linked networks when authorized by users" has been accessed. Quora allows users to log in with Google or Facebook, so this could potentially cause a disaster. Fortunately, there is no financial information at risk here.
Change your Quora password, ASAP
Quora has its internal security team and a digital forensic investigation company that investigates the incident. And he has also notified the application of the law. The company is notifying all users whose data has been compromised in hacking.
As always is a good practice after a data breach, you must change your passwordASAP. In fact, Quora has disconnected all affected users from the site and, if it is one of them, you must change your password when requested.
Explore more about: Data Security, Hacking.