LinkedIn faces accusations of fraud in a class-action lawsuit stemming from a data breach its systems suffered almost two years ago. In June 2012, hackers infiltrated the professional networking site and posted passwords of 6.5 million LinkedIn members, and the plaintiff in the suit has claimed the site misrepresented its security measures.
The primary plaintiff, Khalilah Wright, argues that she would have perceived her premium LinkedIn account, which she opened in 2010, as less valuable, had she known about the company’s “lax security practices,” according to court documents. On March 28, U.S. District Court Judge Edward Davila denied LinkedIn’s motion to dismiss the claim. Previously, the court had dismissed plaintiffs’ claims that the breach caused them financial loss or future harm.
After that dismissal last year, Wright amended her complaint, but Davila threw out her claims of unfair competition and breach of contract. Still, the fraud claim stands.
Wright argued that the industry standard was to use two-layered encryption but LinkedIn used only one at the time of the breach. (It has added a second since then.)
Whether LinkedIn will be held liable for allegedly misrepresenting its security practices will be determined later. A case management conference is scheduled for June 6.
More on Data Privacy:
- Identity Theft: What You Need to Know
- How Do I Dispute an Error on My Credit Report?
- 3 Dumb Things You Can Do With Email
- The Risks You Face From Identity Theft
- How Can You Tell If Your Identity Has Been Stolen?
- What Should I Do If I’m a Victim of Identity Theft?
- How Credit Impacts Your Day-to-Day Life