Quora.com, a question and answer website, is the latest on a long list of companies to suffer a massive data breach. The network breach affected the personal data of about 100 million users.
Information that was compromised included things like names, email addresses, encrypted passwords, data imported from linked networks when authorized by users, questions, answers, comments, upvotes, and non-public content like answer requests, downvotes, and direct messages. Anonymous content, however, appears to be safe.
Quora’s CEO, Adam D’Angelo, wrote in a blog post that the company discovered user data was compromised by an unauthorized third party who gained access to one of its systemson Friday.
“We’re still investigating the precise causes and in addition to the work being conducted by our internal security teams, we have retained a leading digital forensics and security firm to assist us. We have also notified law enforcement officials,” wrote D’Angelo.
The necessary steps have been taken to contain the incident but the investigation is still ongoing.
While the investigation is in progress, Quora is notifying users whose data has been compromised, logging out all Quora users who may have been affected to err on the side of caution, invalidating passwords that are used as an authentication method, and will continue to make security improvements as they learn more.
“Our efforts to protect our users and prevent this type of incident from happening in the future are our top priority as a company,” concludes D’Angelo.