show image

Quora becomes the second American firm in a week to disclose a huge data breach

The personal data of millions of users of the Q&A site Quora has been compromised by a major cyber attack.

In a blog published on Tuesday, the site’s CEO Adam D’Angelo revealed users’ names, email addresses, encrypted passwords and questions had been exposed during the breach. The site has 100 million users, but it said “not all […] are affected, and some were impacted more than others”.

“We recently became aware that some user data was compromised due to unauthorized access to our systems by a malicious third party,” it added. “We have engaged leading digital forensic and security experts and launched an investigation, which is ongoing.”

The site says it has alerted law enforcement and started notifying affected users via email. It became aware of the issue on 30 November, the same day Marriott International revealed a hacker had breached the data of 500 million users of its Starwood division.

Commenting on the breaches, Veeam’s UK chief Mark Adams said it had been “a tough start to December in terms of data protection”. “At a time when more customers are actively online and sharing their personal details with new retailers and other businesses more freely than usual, the data breaches we’ve seen over the last week highlight there is more work to be done by major brands that offer online services and sell products through online stores.”