Quora chief apologises for data leak
San Francisco: Quora CEO Adam D’Angelo has apologised after hackers stole personal information of over 100 million of its users including their names, email addresses and encrypted passwords.
Quora discovered the breach on November 30. It found that the breach happened as a result of unauthorised access to one of our systems by a “malicious third party”.
Quora was founded by D’Angelo, a former Chief Technology Officer at Facebook, in 2009. The Mountain View, California-headquartered company has over 300 million monthly unique visitors.
The company is in the process of sending emails to users whose data have been compromised and logging out all Quora users who may have been affected.
“We believe we’ve identified the root cause and taken steps to address the issue, although our investigation is ongoing and we’ll continue to make security improvements,” D’Angelo said.
“In addition to the work being conducted by our internal security teams, we have retained a leading digital forensics and security firm to assist us. We have also notified law enforcement officials,” he added.
The company said that questions and answers that were written anonymously were not affected by this breach as the platform does not store the identities of people who post anonymous content.
“We are working rapidly to investigate the situation further and take the appropriate steps to prevent such incidents in the future,” the Quora CEO added.
“We’re very sorry for any concern or inconvenience this may cause,” he said.
The overwhelming majority of the content accessed was already public on Quora, but the compromise of account and other private information is serious.
“Hackers are deliberately targeting companies and websites which hold massive amounts of customer data – as we’ve seen with the recent major attacks against airlines and hotel chains,” a spokesperson of Check Point Software Technologies said in a statement.
“In the Quora breach, there was, luckily, no financial information associated with the exposed user data, and the stolen passwords were scrambled, but users should consider changing their passwords on other accounts if they have used the same password as for their Quora account,” the spokesperson added.
