A California man on Monday filed a class-action lawsuit against Zoom, alleging the video conferencing service illegally shared user data with Facebook.
With its popularity surging during the novel coronavirus pandemic, Zoom “has failed to properly safeguard the personal information of the increasingly millions of users” that use the app, the lawsuit alleges.
The complaint accuses Zoom of violating the California Consumer Privacy Act, which requires companies to give consumers notice when they collect and use their personal information.
The lawsuit cites a report last week from Vice News, which found that Zoom’s iOS app had been using a Facebook login feature to send the social media giant details on Zoom users. Those details included the model of a user’s device, their phone carrier, and what time zone they were in, the report said.
Asked for comment on the lawsuit, a Zoom spokesperson referred CyberScoop to the company’s blog post last week saying it had removed the data-sharing feature in a new version of the iOS app. The app never collected users’ names or other information on Zoom meetings, the company said. But the plaintiff argues that users will continue to be harmed because old versions of the app are still in use.
Zoom’s “wholly inadequate program design and security measures…will continue to result in unauthorized disclosure of its users’ personal information to third parties,” the complaint reads.
Bloomberg News was first to report on the lawsuit.
Zoom’s market value has jumped during the COVID-19 pandemic as an increasing number of people use the software as they telework. Malicious hackers have tried to capitalize.
Since the beginning of the year, 1,700 new domains referencing Zoom have been registered, with a quarter of them appearing in the last week, according to cybersecurity company Check Point. Just 4 percent of those domains contained “suspicious characteristics,” Check Point said, but it’s still an opportunity for malicious cyber activity.
New York Attorney General Letitia James is also scrutinizing Zoom’s security and privacy policies. James’s office on Monday sent a letter to Zoom asking the company what security measures it has in place to combat hackers interested in exploiting the app, the New York Times reported.
You can read the full complaint Zoom below.