SECURITY
SECURITY
SECURITY
Christie’s auction house suffers cyberattack, disrupting art auction schedule
British auction house Christie’s has been targeted by a cyberattack that knocked its website offline during its marquee annual art auction week.
The attack, shared by Christie’s Chief Executive Officer Guillaume Cerutti on LinkedIn on Sunday, was described as a “technology security incident.” Pointing to the possible form of the attack, Guillaume wrote that they have made “proactive decisions” including taking the Christie’s website offline. The main reason a company would take systems offline would be to prevent the lateral internal spread of the attack — and the main form attack that moves laterally across a network is ransomware.
The attack resulted in Christie’s having to delay a rare watch sale in Geneva for one day while other auctions went ahead as scheduled. Recorded Future reports that Christie’s has also created a temporary website that states that it was “looking to resolve this as soon as possible” and provides phone numbers and basic information about items that will be auctioned in the coming days.
While ransomware is an obvious suspect and the attack occurred before the actual auctions were scheduled to start, Jamie Boote, associate principal security consultant at Synopsys Software Integrity Group, believes that the attack could be related to the auctions themselves.
“Anywhere there is money somewhere on the internet, attackers have been exploiting vulnerabilities to their benefit,” Boote explained. “There’s even a class of exploits known as ‘eBay attacks’ where attackers used to exploit the five-minute account lock-out to freeze out other bidders from raising the prices on goods they wanted to win.”
He suggested that the attack may have been related to market manipulation. “In this case, availability could have a real-world impact on the prices of those auction items,” Boote added. “When speculating about why an attacker would want to do this, it’s possible that the attacker could be doing this for notoriety, or they could be seeking to lower the prices on certain lots by reducing [the] visibility of those items.”
Photo: Wikimedia Commons
A message from John Furrier, co-founder of SiliconANGLE:
Support our mission to keep content open and free by engaging with theCUBE community. Join theCUBE’s Alumni Trust Network, where technology leaders connect, share intelligence and create opportunities.
- 15M+ viewers of theCUBE videos, powering conversations across AI, cloud, cybersecurity and more
- 11.4k+ theCUBE alumni — Connect with more than 11,400 tech and business leaders shaping the future through a unique trusted-based network.
About SiliconANGLE Media
SiliconANGLE Media is a recognized leader in digital media innovation, uniting breakthrough technology, strategic insights and real-time audience engagement. As the parent company of SiliconANGLE, theCUBE Network, theCUBE Research, CUBE365, theCUBE AI and theCUBE SuperStudios — with flagship locations in Silicon Valley and the New York Stock Exchange — SiliconANGLE Media operates at the intersection of media, technology and AI.
Founded by tech visionaries John Furrier and Dave Vellante, SiliconANGLE Media has built a dynamic ecosystem of industry-leading digital media brands that reach 15+ million elite tech professionals. Our new proprietary theCUBE AI Video Cloud is breaking ground in audience interaction, leveraging theCUBEai.com neural network to help technology companies make data-driven decisions and stay at the forefront of industry conversations.
