Christie’s Inc. was hit with a proposed class action alleging the famed auction house lax data security policies led to a May ransomware attack exposing the personal information of at least 500,000 customers.
Christie’s sent affected customers a May 30 breach notification saying personally identifying information collected during identification checks was stolen from its client verification system, according to the complaint filed Monday in the US District Court for the Southern District of New York. The exfiltrated data included passport and government-issued ID information, it said.
The auction house’s notice said it discovered a breach of its network on May ...
Learn more about Bloomberg Law or Log In to keep reading:
Learn About Bloomberg Law
AI-powered legal analytics, workflow tools and premium legal & business news.
Already a subscriber?
Log in to keep reading or access research tools.