Why isn’t Quora helping those accounts who are getting hacked?

It has been alleged that several Quora accounts have been hacked in June 2017, with spurious deletion requests issued by the hackers, and promptly honoured by Quora. The team of users investigating the breach have identified a couple of vulnerabilities related to Cloudbleed as the likely culprit, possibly via Zendesk (used to manage email communications between users and Quora). Read recent posts on The Insurgency and Cordially Resistant for more.

(The group’s own blog has just been deleted, possibly as a reaction to Top Writer complaints, and the group lead has deactivated his account.)

At least one user impacted reports that he is in conversation with Quora to get his account restored, and the claim has been brought to Quora’s attention via intermediaries on the Top Writer Facebook lounge.

So Quora may be helping those whose accounts have been hacked.

To my knowledge, Quora has not to date communicated about whether the claims are true or not, nor what precautions users should take. (The Quorableed group recommend changing both your Zendesk password and your Quora password.)

The reticence of Quora to communicate to its user base on Quora is longstanding. I am A2A’ing Tatiana Estevez and Jonathan Brill.

EDIT: Update on Account Deletion Processes by Paula Griffin on The Quora Moderation Blog

Leave a Reply

Your email address will not be published. Required fields are marked *