cyber Breach

Artsy

May 11, 2023 1 min read
Artsy

After a data security incident that might have affected the user's Artsy account data, Artsy informed its users.

The company believed that users’ names, emails, and IP addresses have been among the data stolen.

While claiming that the site simply maintains password hashes, the group encouraged users to change their passwords on Artsy as well as other websites that might share similar passwords because there is no proof that any commercial or financial information was compromised.

The Artsy data was one of the items taken from 16 websites and offered for sale on the dark web.
The report claims that an operation resulted in the theft of information pertaining to a million Artsy accounts.

Source: https://www.artnews.com/art-news/news/artsy-data-stolen-security-incident-11904/

TPRM report: https://scoringcyber.rankiteo.com/company/artsyinc

"id": "art154319223",
"linkid": "artsyinc",
"type": "Data Leak",
"date": "02/2019",
"severity": "85",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"
{'affected_entities': [{'customers_affected': 1000000,
                        'industry': 'Art',
                        'name': 'Artsy',
                        'type': 'Company'}],
 'customer_advisories': ['Encouraged users to change their passwords'],
 'data_breach': {'data_exfiltration': True,
                 'number_of_records_exposed': 1000000,
                 'personally_identifiable_information': True,
                 'type_of_data_compromised': ['names',
                                              'emails',
                                              'IP addresses']},
 'description': "A data security incident that might have affected the user's "
                'Artsy account data. The company believed that users’ names, '
                'emails, and IP addresses have been among the data stolen. '
                'While claiming that the site simply maintains password '
                'hashes, the group encouraged users to change their passwords '
                'on Artsy as well as other websites that might share similar '
                'passwords because there is no proof that any commercial or '
                'financial information was compromised. The Artsy data was one '
                'of the items taken from 16 websites and offered for sale on '
                'the dark web. The report claims that an operation resulted in '
                'the theft of information pertaining to a million Artsy '
                'accounts.',
 'impact': {'data_compromised': ['names', 'emails', 'IP addresses']},
 'initial_access_broker': {'data_sold_on_dark_web': True},
 'motivation': 'Financial Gain',
 'recommendations': ['Change passwords on Artsy and other websites with '
                     'similar passwords'],
 'response': {'communication_strategy': ['Informed users about the incident'],
              'remediation_measures': ['Encouraged users to change their '
                                       'passwords']},
 'title': 'Artsy Data Security Incident',
 'type': 'Data Breach'}
Published by
Roshni Ray
Roshni Ray
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.