Yahoo! class action settlement rejected

A federal judge in the US District Court for the Northern District of California has denied a motion for preliminary approval of a proposed class action settlement in a suit brought by Yahoo! account holders hacked  between 2014 and 2016. The plaintiffs allege that Yahoo!’s information security and legal teams knew of the 2014 breach involving 200 million users’ accounts when it occurred, yet the company failed to report the breach until September 2016.  The plaintiffs also claim that Yahoo! had inadequate safeguards in place to protect users’ personal information. The court cited several reasons for denying the motion, including failure to disclose the size of the settlement fund or the scope of non-monetary relief, improper release of potential claims, and failure to identify the size of the plaintiffs’ class.

Amended order