Judge dismisses LinkedIn password breach lawsuit

A US District Court judge has dismissed a suit that claimed that the plaintiffs were damaged by LinkedIn’s lack of diligence in safeguarding LinkedIn subscribers’ usernames and passwords. The case was brought by Katie Szpyrka and Khalilah Wright, after about 6.5 million usernames and passwords were downloaded from LinkedIn by a Russian hacker last June. (I wrote about two LinkedIn problems in LinkedIn users’ data LeakedOut. and again when 88 percent of the passwords were cracked within five days: No password news is good password news.)

Judge Edward Davila dismissed the lawsuit because

  • Plaintiffs hadn’t read LinkedIn’s Terms Of Service (TOS), so couldn’t claim that LinkedIn had breached their TOS, which includes

    …we cannot ensure or warrant the security of any information you transmit to LinkedIn. There is no guarantee that information may not be accessed, disclosed, altered, or destroyed by breach of any of our physical, technical, or managerial safeguards. It is your responsibility to protect the security of your login information.

  • Plaintiffs could not show consequent damage.

That clause within LinkedIn’s TOS sounds broad. “If you upload it to our site, don’t expect us to safeguard it.” Broad, I tells ya.


News article from Kaspersky’s ThreatPost: LinkedIn Data Breach Lawsuit Dismissed

Visit my website: http://russbellew.com
© Russ Bellew · Fort Lauderdale, Florida, USA · phone 954 873-4695

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s