Sotheby’s customer data leak
Data Leak
Summary
Hide ▲
Show ▼
Sotheby’s disclosed a data leak after an unknown actor removed customer records from its environment, exposing full names, Social Security numbers, and financial account information. The company detected the issue on July 24, 2025 and spent about two months validating what data was involved. The exposure creates clear identity-theft and financial-fraud risk for impacted customers. Sotheby’s is offering 12 months of identity protection and credit monitoring to affected people.
Related Happenings
HackerOne employee and dependent data leak after Navia breach
Data Leak
First: 24.03.2026 16:01
Last: 24.03.2026 16:01
Sources 1
About this happening:
HackerOne disclosed that **sensitive employee and dependent data** was exposed after attackers accessed **Navia** through a **Broken Object Level Authorization (BOLA) vulnerabilit...
HackerOne employee and dependent data leak after Navia breach
Data LeakAbout this happening: HackerOne disclosed that **sensitive employee and dependent data** was exposed after attackers accessed **Navia** through a **Broken Object Level Authorization (BOLA) vulnerabilit...
Navia Benefit Solutions Inc. hit by cyberattack
Incident
First: 19.03.2026 22:43
Last: 19.03.2026 22:43
Sources 1
About this happening:
**Navia Benefit Solutions, Inc.** disclosed a **data breach** that exposed sensitive information for **nearly 2.7 million individuals**, after attackers had access to its systems...
Navia Benefit Solutions Inc. hit by cyberattack
IncidentAbout this happening: **Navia Benefit Solutions, Inc.** disclosed a **data breach** that exposed sensitive information for **nearly 2.7 million individuals**, after attackers had access to its systems...
Navia Benefit Solutions data breach exposing benefits records
Data Leak
First: 19.03.2026 22:43
Last: 19.03.2026 22:43
Sources 1
About this happening:
**Navia Benefit Solutions** disclosed a **data breach** that exposed sensitive data tied to **nearly 2.7 million individuals**. Attackers had access to its systems from **December...
Navia Benefit Solutions data breach exposing benefits records
Data LeakAbout this happening: **Navia Benefit Solutions** disclosed a **data breach** that exposed sensitive data tied to **nearly 2.7 million individuals**. Attackers had access to its systems from **December...
700Credit 700Dealer.com customer records leak
Data Leak
First: 16.12.2025 12:15
Last: 16.12.2025 12:15
Sources 1
About this happening:
The **700Credit** data leak exposed **5.8 million end customers** after records in the **700Dealer.com** application were copied without authorization. The exposed PII included **...
700Credit 700Dealer.com customer records leak
Data LeakAbout this happening: The **700Credit** data leak exposed **5.8 million end customers** after records in the **700Dealer.com** application were copied without authorization. The exposed PII included **...
Sotheby’s hit by ransomware attack
Incident
First: 16.10.2025 22:24
Last: 16.10.2025 22:24
Sources 1
About this happening:
Sotheby’s disclosed a **cybersecurity incident** after an **unknown actor** removed data from its environment, creating risk that **employee information** was exposed. The breach...
Sotheby’s hit by ransomware attack
IncidentAbout this happening: Sotheby’s disclosed a **cybersecurity incident** after an **unknown actor** removed data from its environment, creating risk that **employee information** was exposed. The breach...
Latest development: 17.10.2025 03:00
Sotheby’s said the cybersecurity incident may have involved employee information rather than customer data, and a Maine AG filing said the exposed records included full names, Social Security numbers, and financial account information. The organization said it launched an investigation with data protection and response experts and law enforcement, and it offered impacted individuals 12 months of free identity protection and credit monitoring through TransUnion with 90 days to enroll.
Timeline
-
16.10.2025 22:24 1 articles · 7mo ago
Sotheby’s detects unauthorized removal of data
Initial DisclosureOn July 24, 2025, Sotheby’s became aware that certain Sotheby’s data appeared to have been removed from its environment by an unknown actor.
Show sources
- Auction giant Sotheby’s says data breach exposed customer information — www.bleepingcomputer.com — 16.10.2025 22:24
-
16.10.2025 22:24 2 articles · 7mo ago
Sotheby’s notifies customers of exposed SSNs and financial data
Victim Impact UpdateBy October 16, 2025, Sotheby’s had completed an investigation that it says took two months and notified impacted individuals and Maine’s AG office that the exposed data includes full names, Social Security numbers (SSNs), and financial account information; affected customers were also offered 12-month free-of-charge identity protection and credit monitoring through TransUnion with 90 days to enroll.
Show sources
- Auction giant Sotheby’s says data breach exposed customer information — www.bleepingcomputer.com — 16.10.2025 22:24
- Auction giant Sotheby’s says data breach exposed customer information — www.bleepingcomputer.com — 16.10.2025 22:24