Christie’s is an auction house in Britian, according to the article. The pilfering took place between the 8th and 9th of May, with notices going out starting on May 30th.
Now this … is what I’m talking about. This … is what should happen if something should go wrong.
While its around the 1 month mark, this .. . should be the way it should go when any company should succum to a breach.
While I think it should be a lot faster, under the circumstances, one month should be quite reasonable.
For those who have gone to this auction house, be aware.
Ransom Hub is a new group out there, but the article indicates they don’t ransom files, although they may have the capability to do so. Names, addresses and about 500,000 may have been pilfered, and there could be more than these two data points.
Christie’s is not so lucky. The data was sold on the ransomware group’s auction house, making it available to the highest bidder.
Fruntier Communications was also involved in Ransomhub’s ordeal as they had to shut down services in April.
Christie’s starts notifying clients of RansomHub data breach talks about both of these
Unrelated: Frontier warns 750,000 of a data breach after extortion threats goes in to more detail on Fruntier’s issues.
I’m putting it here because of the fact it is the same ransom group, but that’s all that is related.
The only other thing I’ll add here is that Ransomhub claims they have 2 million of Frontier’s people, and they advised to sign up for services provided by Kroll.
As we know, Kroll had its own breach, but I am not sure if this is the same Kroll. I’m mentioning it just in case.
There seems to be more information about Krol’s breach and The Security box, podcast 57: the name game of Ransomware Gangs, Windows Update, and CSAM and apple products may be two other sources of reading and or listening if you want to learn more about Kroll, Ransomware, name games and more.
Stayy well! Stay Safe! Amd Pass this along.