I happened to come across an interesting article this morning which discussed the need for a two-factor authentication system for Gaming Networks in the wake of the many data breaches over the past number of years:
This article highlights a concern for video game companies which acquire personal information of users, such as credit card information, DOB, addresses, etc. This makes me wonder about the ability for class-action lawsuits against Corporations (and the Directors and Officers who run those companies) in Canada who have had personal information stolen. Such as Sony who had 77 million people’s information stolen in their network breach. While they did provide $15 million in digital goods compensation, is this enough? Is it possible to show that harm has occurred to a user who has had their information stolen? These are questions that I hope to explore as the semester goes on.