It hasn’t broken down the numbers by country. All that it’s said is that the breach affected a “broad” spectrum of users. It’s also given out scant details about the breach since initially disclosing the attack. What’s even worse: the plaintiffs allege that Facebook could and did protect its own employees from the fallout, leaving everybody else as sitting ducks.įacebook knew about the access token vulnerability and failed to fix it for years, despite that knowledge.Įven more egregiously, Facebook took steps to protect its own employees from the security risk, but not the vast majority of its users.įacebook hadn’t responded to requests for comment as of Friday afternoon. On Thursday, in a heavily redacted section of the filing in the US District Court for Northern California, the plaintiffs said that Facebook knew about, and failed to fix, the vulnerability for years. Facebook knew about it and “failed to fix it for years” The attackers could also see posts and lists of friends and groups of about 400,000 users. That’s exactly what attackers did: they took the profile details belonging to some 14 million users, including birth dates, employers, education history, religious preference, types of devices used, pages followed and recent searches and location check-ins.Īccording to Reuters, another 15 million users had only their name and contact details exposed. If user Y was logged into Facebook at the time, even if they weren’t actually active on the site, the crooks could recover the Facebook access token for user Y, potentially giving them access to lots of data about that user. But crooks figured out to how to exploit a bug (actually, a combination of three different bugs) so that when they logged in as user X and did View As user Y, they essentially became user Y. This is supposed to be a security feature that helps you check whether you’re oversharing information you meant to keep private. Please feel to contact us by using the contact information on this site.As Naked Security’s Paul Ducklin explained at the time, the View As feature lets you preview your profile as other people would see it. In addition, the plaintiff may seek funding assistance from the Class Proceeding Fund which, if funding is granted, may provide funding for disbursements. In that case, class counsel fees may be paid by the defendants or out of the settlement or judgment proceeds as approved by the court. Typically, class actions are handled on a contingency fee basis, which means that the class action lawyers will be paid only if the class action is successful at trial or settled. Will there be any cost to class members for legal fees? If you opt out, you will not receive any benefit if the action is successful. If you do not opt out by the given deadline, class members will be bound by the outcome of the class action, whether it is successful or unsuccessful. When a class action is certified, class members are always given an opportunity to opt out of the action. After the claim has been certified, the court will authorize notice to be given to the members of the class.Ĭan I opt out of a class action and pursue independent legal action? If you are included in the class description, you are automatically a class member who will be affected by the outcome of the class action unless you decide to “opt out”.Īre Class Members notified of the certification of the class proceeding? You do not need to “sign up” to become involved in a class action. We post the certification orders in our actions so that you can review them. The certification order will always contain a description of who is a class member. If certified, a representative plaintiff will advance the action on behalf of all of the class members. The decision as to whether a class action should be certified takes place at a certification hearing and is decided by a judge. Members are common, and whether a class action is preferable to other methods (such as individual actions) of advancing the issues. Some of the factors the courts consider are the extent to which the claims of the class In order for an action to proceed as a class action, the court must determine whether it is appropriate for the case to be treated as a class action. Class actions are a more efficient and cost-effective way for groups of people with common claims to gain access to the legal system and seek justice. A class action is a lawsuit which provides a method for a large group of people with common claims to join together to advance one large claim.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |