Sunday, November 17, 2024
Homecyber securityMeta paid a $1.4 Billion Settlement for the Unauthorized Capture of Personal...

Meta paid a $1.4 Billion Settlement for the Unauthorized Capture of Personal Biometric Data

Published on

Texas Attorney General Ken Paxton has secured a $1.4 billion settlement with Meta Platforms Inc. (formerly known as Facebook) over the unauthorized capture and use of millions of Texans’ personal biometric data.

This settlement marks the largest privacy settlement ever obtained by an Attorney General from a single state and serves as a significant warning to companies engaged in practices that violate privacy rights.

Largest Privacy Settlement in History

The $1.4 billion settlement dwarfs previous records, including a $390 million settlement obtained by 40 states from Google in late 2022.

- Advertisement - SIEM as a Service

This case is the first lawsuit and settlement under Texas’s “Capture or Use of Biometric Identifier” Act (CUBI), highlighting the state’s commitment to protecting its citizens’ privacy rights.

Attorney General Paxton emphasized the importance of holding major technology companies accountable for violating privacy laws.

“After vigorously pursuing justice for our citizens whose privacy rights were violated by Meta’s use of facial recognition software, I’m proud to announce that we have reached the largest settlement ever obtained from an action brought by a single State,” said Attorney General Paxton.

“This historic settlement demonstrates our commitment to challenging the world’s biggest technology companies and holding them accountable for breaking the law and violating Texans’ privacy rights. Any abuse of Texans’ sensitive data will be met with the full force of the law.”

Meta’s Unauthorized Data Collection

In February 2022, Attorney General Paxton sued Meta for unlawfully capturing the biometric data of millions of Texans without obtaining their informed consent as required by Texas law.

The lawsuit revealed that Meta’s data collection practices violated both the CUBI and Deceptive Trade Practices Act.

How to Build a Security Framework With Limited Resources IT Security Team (PDF) - Free Guide

Meta’s facial recognition software, initially introduced in 2011 as a Tag Suggestions feature, automatically scanned and recorded facial geometry from photographs uploaded to Facebook without users’ knowledge or consent.

The settlement agreement, reached after only two years of litigation, requires Meta to pay the state of Texas $1.4 billion over five years.

Attorney General Paxton credited the aggressive litigation efforts of co-counsel firms Keller Postman and McKool Smith with achieving this historic outcome.

Zina Bash served as Lead Counsel for Keller Postman, while Sam Baxter and Jennifer Truelove led the team from McKool Smith.

This settlement underscores the importance of informed consent in data collection practices and serves as a precedent for future privacy enforcement actions.

Texans can now rest assured that their biometric data will be protected under the full force of the law.

Are you from SOC and DFIR Teams? – Analyse Malware Incidents & get live Access with ANY.RUN -> Free Access

Divya
Divya
Divya is a Senior Journalist at GBhackers covering Cyber Attacks, Threats, Breaches, Vulnerabilities and other happenings in the cyber world.

Latest articles

Critical TP-Link DHCP Vulnerability Let Attackers Execute Arbitrary Code Remotely

A critical security flaw has been uncovered in certain TP-Link routers, potentially allowing malicious...

Chinese SilkSpecter Hackers Attacking Black Friday Shoppers

SilkSpecter, a Chinese financially motivated threat actor, launched a sophisticated phishing campaign targeting e-commerce...

Cybercriminals Launch SEO Poisoning Attack to Lure Shoppers to Fake Online Stores

The research revealed how threat actors exploit SEO poisoning to redirect unsuspecting users to...

Black Basta Ransomware Leveraging Social Engineering For Malware Deployment

Black Basta, a prominent ransomware group, has rapidly gained notoriety since its emergence in...

Free Webinar

Protect Websites & APIs from Malware Attack

Malware targeting customer-facing websites and API applications poses significant risks, including compliance violations, defacements, and even blacklisting.

Join us for an insightful webinar featuring Vivek Gopalan, VP of Products at Indusface, as he shares effective strategies for safeguarding websites and APIs against malware.

Discussion points

Scan DOM, internal links, and JavaScript libraries for hidden malware.
Detect website defacements in real time.
Protect your brand by monitoring for potential blacklisting.
Prevent malware from infiltrating your server and cloud infrastructure.

More like this

Critical TP-Link DHCP Vulnerability Let Attackers Execute Arbitrary Code Remotely

A critical security flaw has been uncovered in certain TP-Link routers, potentially allowing malicious...

Chinese SilkSpecter Hackers Attacking Black Friday Shoppers

SilkSpecter, a Chinese financially motivated threat actor, launched a sophisticated phishing campaign targeting e-commerce...

Cybercriminals Launch SEO Poisoning Attack to Lure Shoppers to Fake Online Stores

The research revealed how threat actors exploit SEO poisoning to redirect unsuspecting users to...