Overview
- Sotheby’s says it detected data removal on July 24 and later confirmed sensitive information had been stolen.
- Exposed details include full names, Social Security numbers and financial account information, with the company clarifying the records belong to employees rather than customers.
- The total number of people affected has not been disclosed, though state filings reference two individuals in Maine and two in Rhode Island.
- Impacted individuals are being offered 12 months of identity protection and credit monitoring through TransUnion with enrollment instructions provided.
- The auction house cites layered security controls, is working with forensic experts and law enforcement, and no ransomware group has claimed responsibility.