LinkedIn Sued Over Security Breach

Courthouse News Service reports that LinkedIn account holder Katie Szpyrka has filed a class action lawsuit against the company in response to a recent security breach, accusing it of “failing to properly safeguard its users’ digitally stored personally identifiable information … including e-mail addresses, passwords, and login credentials.”

“Szpyrka, who filed the suit in United State District Court in the Northern District of California, is demanding a jury trial on grounds including breach of contract and negligence,” writes ZDNet’s John Fontana. “She says the users in the class action group include individuals and entities in the United States who had a LinkedIn account on or before June 6, 2012, including those who paid for an upgraded account.”

“In the suit, Szpyrka, who pays $26.95 per month for a premium LinkedIn account, pointed out that LinkedIn’s privacy policy promises users that all the information they provide is protected with industry standards and technology,” writes CNET News’ Donna Tam. “She said LinkedIn should have ‘salted’ the passwords. Salting is an encryption technique that provides an added layer of security to data. After news broke of the passwords, LinkedIn admitted to not salting the passwords before storing them, but said it is using the technique now.”

“The case is likely to turn on whether LinkedIn did enough to protect its users accounts and whether it did enough to notify users of the hacking incident,” writes GigaOM’s Jeff John Roberts. “Even though the breach was first reported by a Norwegian security firm and publicized by numerous technology sites, LinkedIn appears to have waited more than twelve hours before acknowledging its users data had been compromised.”

Jeff Goldman
Jeff Goldman
Jeff Goldman has been a technology journalist for more than 20 years and an eSecurity Planet contributor since 2009.

Top Products

Related articles