// UNCLASSIFIED // CLEARED FOR PUBLIC RELEASE //
FILE BRC-newsDTG 0600Z
ColdRecon / Breach Radar / Christie's
Breach Record

Christie's

DISCLOSED 2024-06-10 · RANSOMWARE · 45,000 RECORDS EXPOSED · RANSOMWARE

Auction house Christie's confirmed that the RansomHub ransomware group stole personal information of approximately 45,000 clients. The breach was disclosed on June 10, 2024, and the number of affected individuals is far lower than the half-million initially claimed by the criminals.

The record

What we know

Disclosed
2024-06-10
Attack vector
Ransomware
Sector
auction house
Records exposed
45,000
Domain
christies.com
Data classes exposed
personal information
RANSOMWARE ENDPOINT INVOLVED
ColdRecon assessment

Could a positive-security control have prevented this?

Verdict · unclear · opinion

Without details on how the ransomware was deployed, it is unclear if a positive-security model would have prevented the attack. If the ransomware relied on unauthorized changes to executables or scripts, an allowlist approach could have blocked it, but the article provides no specifics.

Our assessments are opinion, grounded in the cited public facts. Read them critically.

Sources

Cited reporting

Similar vector · recent

Other ransomware breaches on file

This page is the permanent ColdRecon entry for the Christie's disclosure. It updates if new public reporting emerges. All tracked breaches →

Christie's just lived through this. Your next prospect doesn't have to.

ColdRecon turns every disclosed breach into a daily intelligence brief from the seller's seat — normalized to the factors that move a deal, written in the Handler's voice. Request clearance and the first lands tomorrow at 0600.

Request Clearance →