On September 23, 2016, Ronald Schwartz, a New York resident, filed a case and sought class-action certification on behalf of himself and other users against defendant Yahoo. According to the complaint, the Company “failed to adequately protect its users or itself from data breach”.
The claim was filed after, on September 22, 2016, Yahoo issued a press release in which it confirmed that sensitive personal account information associated with at least 500 million user accounts “was stolen from the company’s network in late 2014 by what it believes is a state-sponsored actor.” The stolen information includes users’ names, email addresses, telephone numbers, dates of birth, and passwords.
The complaint alleges that Yahoo was grossly negligent by “failing to implement reasonable security measures to protect its users’ sensitive personal information” and it “further breached its duty of care by allowing the breach to continue undetected and unimpeded for nearly two years after the hackers first gained access to Defendant’s systems”.
The Plaintiff seeks compensation for any damages resulting from data breach and to pay for measures to safeguard compromised accounts.
Schwartz v. Yahoo! Inc., 5:16-cv-05456, U.S. District Court, Northern District of California (San Jose) is available at https://www.pacermonitor.com… Open PDF
Published on Technethics on October 2016