Another week, another massive hack. Last week it was Marriott Starwood hotels; this week, it’s question-and-answer website Quora’s turn. Late Monday night, Quora revealed that “a malicious third party” gained access to its systems and swiped the account data of approximately 100 million users. That includes personally identifiable information, like your name and email address, as well as details about the actions you’ve taken on Quora itself, and data from other sites you’ve linked to your Quora account.

It’s bad, and the Quora hack affects a lot of folks. Here’s everything you need to know.

So what happened?

Quora is still investigating, but CEO Adam D’Angelo says that “On Friday [November 30] we discovered that some user data was compromised by a third party who gained unauthorized access to one of our systems.” Further details weren’t provided yet.

What Quora user data was taken?

Pretty much everything associated with your account.

D’Angelo says that the hackers may have pilfered 100 million users’ names, email addresses, and encrypted passwords. Any data imported from another social network, such as contacts and demographic information, could have been compromised as well. The hackers may also have records of every public and private action you’ve taken on Quora, including comments, upvotes and downvotes, questions, and direct messages.

Anything posted anonymously shouldn’t have been included, as D’Angelo says Quora does “not store the identities of people who post anonymous content.”
stealing a password Thinkstock

How do I know if my Quora account was hacked?

Quora says it’s notifying everybody who was hacked, and logging out every account that may have been affected. If you use a password for authentication, your password will also be reset.

Any further information discovered during Quora’s investigation will be shared with affected users via email.