The four-year-old lawsuit claimed Facebook allowed the British political consulting firm access to private data of over 80 million users. Facebook parent Meta Platforms agreed Friday to settle a class action lawsuit seeking damages for allowing British political consulting firm Cambridge Analytica access to the private data of tens of millions of Facebook users. The settlement will spare CEO Marc Zuckerberg an embarrassing court appearance to defend his company.Lawyers acting for the plaintiffs and for Facebook filed a joint request with the US District Court for the Northern District of California on Friday, asking the judge to put the class action on hold for sixty days while the two parties finalized a written settlement for an as-yet undisclosed amount. The high profile lawsuit has been running for over four years and claims that Facebook shared data of millions of US voters with Cambridge Analytica.“Because the Parties have reached an agreement in principle of the Action, and believe it will facilitate the process of finalizing a written settlement agreement and presenting to the Court for preliminary approval, the Parties jointly request a stay of the Action for sixty (60) days,” co-lead counsel for the plaintiffs Lesley E. Weaver wrote in the filing, adding that lawyers for both sides supported the request. The lawsuit was brought by a group of users who alleged a Facebook quiz app called “This Is Your Digital Life” created by Cambridge Analytica harvested users’ data that included data describing users’ Facebook Friends, potentially accessing the personal information of 80 million-plus users. The app is said to have been downloaded by over 300,000 Facebook users. All this data was then allegedly used by the UK firm to build profiles of US voters and microtarget them with political advertisements. Facebook could have access to vast amounts of user dataIn a 2018 blog, researcher Jonathan Bright detailed how Facebook APIs were capable of collecting user data for years.The information that could be harvested by Facebook apps, according to Bright, was extensive and including “about me, actions, activities, b-day, check-ins, education, events, games, groups, hometown, interests, likes, location, notes, online status, tags, photos, questions, relationships, religion/politics, status, subscriptions, website, work history.” Cambridge Analytica went bankrupt soon after the exposé in 2018 and was also accused of meddling in the 2016 Brexit referendum in the UK. Meta has paid billions of dollars in fines and settlements since a Cambridge Analytica whistle blower exposed the mass data misuse in 2018. The social networking firm has already paid a $5 billion fine to FTC as a fallout of the scandal, another $4.9 billion of claimed settlement with FTC, and a fine of $630,000 to UK authorities.Meta even faces another lawsuit filed last year by Facebook shareholders in September claiming the FTC settlement amount was $4.9 billion and was paid to FTC as “an express quid pro quo to protect Zuckerberg from being named in the FTC’s complaint, made subject to personal liability, or even required to sit for a deposition.”Settlement comes as a relief for Marc ZuckerbergFriday’s settlement will save senior Meta executives a trip to court. Zuckerberg was scheduled to appear for a six-hour deposition on September 20, with Meta’s Chief Operating Officer Sheryl Sandberg and Chief Growth Officer and Vice President Javier Olivan also due to appear. Sandberg has already resigned from her position as COO and will be leaving the company later this year. Related content news analysis Chinese threat actor engaged in multi-year DNS resolver probing effort The unusual and persistent probing activity over the span of multiple years should be a reminder to organizations to identify and remove all open DNS resolvers from their networks. By Lucian Constantin Apr 30, 2024 7 mins Cyberattacks Network Security news Securiti adds distributed LLM firewalls to secure genAI applications The new offering is aimed at protecting against prompt injection, data leakage, and training data poisoning in LLM systems. By Shweta Sharma Apr 30, 2024 4 mins Generative AI news UnitedHealth hackers exploited Citrix vulnerabilities, CEO to testify In the written testimony before the House Energy and Commerce Committee, CEO Andrew Witty said after gaining access, the threat actor moved laterally within the systems using sophisticated methods and exfiltrated data. By Prasanth Aby Thomas Apr 30, 2024 3 mins Hacker Groups Cyberattacks Vulnerabilities opinion Close the barn door now! Avoid the risk of not monitoring retained access before it’s a problem There’s usually a strict protocol for granting access to systems or data to a new employee or contractor. But there are perils in not keeping tabs on that access as that person moves around or leaves. By Christopher Burgess Apr 30, 2024 6 mins CSO and CISO Access Control Human Resources PODCASTS VIDEOS RESOURCES EVENTS SUBSCRIBE TO OUR NEWSLETTER From our editors straight to your inbox Get started by entering your email address below. Please enter a valid email address Subscribe