Quora added that some public actions like questions, answers, comments, upvotes as well as private actions like answer requests, downvotes and direct messages may also be compromised. Questions and answers that were written anonymously were however not affected by this breach.
“The overwhelming majority of the content accessed was already public on Quora, but the compromise of account and other private information is serious” Quora CEO Adam D’Angelo said in a blogpost.
“We believe we’ve identified the root cause and taken steps to address the issue, although our investigation is ongoing and we’ll continue to make security improvements. We are in the process of notifying users whose data has been compromised” he added.
D’Angelo said they are also logging out all affected Quora users and invalidating their passwords if they use a password as their authentication method. “We will continue to work both internally and with our outside experts to gain a full understanding of what happened and take any further action as needed” he added.
(With inputs from Reuters)