Quora security breach exposes 100 million users’ information

Q&A site Quora has a lot to answer for

Quora, a popular members-only question and answer site, has revealed that hackers have stolen the information on 100 million of the site's users.In a security update, the site admitted that "a malicious third party" had made unauthorized access into the site. The breach, detected 30 November, is under investigation and in the meantime Quora is prompting all its users to reset their passwords.

Advertisement - Article continues below

Information stolen includes users' email addresses, passwords, names and any information gleaned from linked social media accounts. In addition, the hackers have knowledge of user activity including questions and answers posted, as well as anything up- or down-voted and any personal messages sent.

As there are no monetary transactions on Quora, no credit card information was stolen, making it a perplexing choice of target for hackers. However, since many people use the same passwords for various different online systems, it's likely hackers were taking the information to attempt to access different sites. In addition knowledge of users' questions and answers could be useful to some, by showing what services they use and even where they live.

The biggest surprise, however, is that many people weren't even aware hey had Quora accounts in the first place. Users on other social media platforms have expressed concern and annoyance at losing information on a network they haven't used in years. Even Quora itself nods to this concern in its FAQ sheet on the breach, with a question "I didn't know I had a Quora account. How is it that my email or information was exposed?"

Advertisement
Advertisement - Article continues below
Advertisement - Article continues below

This is enraging mainly because I have never wanted to be a member of something less than Quora dot com but they twist your arm into it pic.twitter.com/x68xSvhGzu

Walter Hickey (@WaltHickey) December 4, 2018

1. Quora got hacked. 2. People still use Quora? pic.twitter.com/i8wyy8KEZo Josh McConnell (@joshmcconnell) December 4, 2018

While 100 million victims of a hack is a significant number, it isn't the biggest hack this year, heck it's not even the biggest hack in the last seven days. On 30 November the hotel chain Marriott alerted its customers to a massive hack that affects 300 million users.

Since August of this year, we've seen plenty of breaches with the NHSBritish AirwaysFacebookAmazon, and several other major online services (or services with an online presence) have all had data stolen, to varying degrees of severity. If they didn't know it already, people are quickly having to realise that data isn't safe online.

Featured Resources

The case for a marketing content hub

Transform your digital marketing to deliver customer expectations

Download now

Fast, flexible and compliant e-signatures for global businesses

Be at the forefront of digital transformation with electronic signatures

Download now

Why CEOS should care about the move to SAP S/4HANA

And how they can accelerate business value

Download now

IT faces new security challenges in the wake of COVID-19

Beat the crisis by learning how to secure your network

Download now
Advertisement

Most Popular

Visit/operating-systems/ios/355935/apple-confirms-serious-bugs-in-ios-135
iOS

Apple confirms serious bugs in iOS 13.5

4 Jun 2020
Visit/mobile/5g/355911/the-uk-pivots-to-japan-for-5g-equipment
5G

The UK looks to Japan and South Korea for 5G equipment

4 Jun 2020
Visit/security/ransomware/355945/new-ransomware-uses-java-to-target-software-organisations
ransomware

Tycoon ransomware discovered using Java image files to target software firms

5 Jun 2020