Today's big data breach has been announced by Quora Q & A site with over 100 million registered users. What did the "unauthorized third party" get? According to CEO Adam D & # 39; Angelo:
Account information, e.g. Name, email address, encrypted (hashed) password, data imported from linked networks when they are authorized by users
Public content and actions, e.g. Questions, Answers, Comments, Upvotes
Non-public content and actions, eg. Responding to Inquiries, Downvotes, Direct Messages (note that a small percentage of Quora users have sent or received such messages)
Quora found the violation on November 30 and stated that he was still under investigation. It has logged out all users and forced all accounts with a password to reset this password. It also said that the password data was salted and hashed to prevent attackers from using it. However, to be careful, users should also reset passwords for their other accounts if they use the same. There are emails informing users about the violation, but now all available information is organized in this FAQ.