cross-posted from: https://infosec.exchange/users/thenexusofprivacy/statuses/111847834655628571
Worth noting: Microsoft owns LinkedIn, which wouldn’t be particularly affected by KOSA.
There’s a hearing on Wednesday, and potentially a Senate vote soon, so if you’re in the US now’s a good time to contact your Senators. https://stopkosa.com and EFF’s page make it easy!
In practice, when the AG threatens to sue and the law makes it clear that they’ll win (which KOSA currently does), companies will typically stop what they’re doing (or settle if the AG actually launches a suit)
Wouldn’t the law only make clear they’ll win if it fits the law’s definition of harm?