Cloud-services provider Dropbox Inc. failed to protect hundreds of thousands of people’s personal information that was exposed in an April data breach, a proposed federal class action said.
Steven Guiffre alleged that Dropbox didn’t implement adequate and reasonable data-security procedures, encrypt sensitive information, or provide prompt and accurate notice of the breach.
Information exposed in the breach included emails, usernames, phone numbers, hashed passwords, multi-factor authentication information, and general account settings, according to a complaint filed Thursday in the US District Court for the Northern District of California.
Dropbox said in a breach-notification announcement that the incident appeared to be ...
Learn more about Bloomberg Law or Log In to keep reading:
Learn About Bloomberg Law
AI-powered legal analytics, workflow tools and premium legal & business news.
Already a subscriber?
Log in to keep reading or access research tools.