CrimeDec 09, 2020
In the Wake of the Cyberattack on Stuller, 5 Tips on CybersecurityCrimeNov 02, 2021
Graff Gets Hit by Ransomware Attack
The data breach included some personal details of high-end clients.
Graff is known for its high jewelry, counting celebrities and world leaders among its clients. Pictured here is the “New Dawn” necklace from Graff’s “Tribal” collection, featuring 64 total carats of diamonds in 18-karat white gold.
London—High-end jeweler Graff has become the victim of a ransomware attack.
Ransomware is malware that uses encryption to hold a victim’s system or personal files and demands payment to get them back.
For most people involved in the Graff data breach, it included details like their name and potentially their home address—which can be retrieved in the public domain from other sources– rather than any other confidential details that would put them at risk of identity theft.
A Graff spokesperson said the brand informed “the small group of individuals whose personal data was compromised to such an extent” and advised them on the appropriate steps to take.
The brand’s security systems alerted it to the activity, allowing it to react quickly and shut down its network.
Graff said it has been working with the U.K.’s Information Commissioner’s Office and relevant law enforcement on the incident.
“Thanks to our robust back-up facilities we were able to rebuild and restart our systems within days - crucially with no irretrievable loss of data,” the spokesperson said.
“Sadly, it appears that notable brands, corporations and even government departments are deliberately targeted by unscrupulous operators to extort money, cause disruption or simply embarrassment. Cybercrime continues to rise in scale and complexity. It is a threat to every business. Maintaining the highest level of security against these threats has always been a top priority for us. We are continually strengthening our systems to counter these threats as they evolve.”
The group known as Conti is said to be behind the attack, the U.K.’s The Times reported, leaking the details of the brand’s high-end clientele to the dark web.
In a September press release, the Cybersecurity and Infrastructure Security Agency said it and the Federal Bureau of Investigation had seen an increase in the use of Conti ransomware in more than 400 attacks on U.S. and international organizations.
Earlier this year, the FBI said it had identified at least 16 Conti ransomware attacks that targeted healthcare and first responder networks in the U.S.
Related stories will be right here …
Ransomware is malware that uses encryption to hold a victim’s system or personal files and demands payment to get them back.
For most people involved in the Graff data breach, it included details like their name and potentially their home address—which can be retrieved in the public domain from other sources– rather than any other confidential details that would put them at risk of identity theft.
A Graff spokesperson said the brand informed “the small group of individuals whose personal data was compromised to such an extent” and advised them on the appropriate steps to take.
The brand’s security systems alerted it to the activity, allowing it to react quickly and shut down its network.
Graff said it has been working with the U.K.’s Information Commissioner’s Office and relevant law enforcement on the incident.
“Thanks to our robust back-up facilities we were able to rebuild and restart our systems within days - crucially with no irretrievable loss of data,” the spokesperson said.
“Sadly, it appears that notable brands, corporations and even government departments are deliberately targeted by unscrupulous operators to extort money, cause disruption or simply embarrassment. Cybercrime continues to rise in scale and complexity. It is a threat to every business. Maintaining the highest level of security against these threats has always been a top priority for us. We are continually strengthening our systems to counter these threats as they evolve.”
The group known as Conti is said to be behind the attack, the U.K.’s The Times reported, leaking the details of the brand’s high-end clientele to the dark web.
In a September press release, the Cybersecurity and Infrastructure Security Agency said it and the Federal Bureau of Investigation had seen an increase in the use of Conti ransomware in more than 400 attacks on U.S. and international organizations.
Earlier this year, the FBI said it had identified at least 16 Conti ransomware attacks that targeted healthcare and first responder networks in the U.S.
While the hacks that tend to make headlines are the bigger ones, small businesses should also protect themselves against such crimes.
The Jewelers’ Security Alliance recommends the following actions to prevent cybercrime.
1. Have proper firewalls, anti-virus, and anti-malware for all systems, and keep them up to date.
2. Don’t let employees use company internet-connected devices at work for personal use or download software without permission. Additionally, don’t let them introduce personal memory sticks into a company system.
3. Have strong, unique passwords.
4. Beware of phishing. One of the main pathways for cyber criminals is to lead someone to open and click on a link in an email which will unleash malware to penetrate the system, JSA said.
So, don’t open or click on unknown or suspicious emails. Even emails from people and customers or vendors that might seem familiar can be spoof emails or from someone who has obtained an email address only slightly different from a real email address.
Additionally, look for unfamiliar foreign domains, misspellings, and other anomalies.
5. Beware of social engineering, which is obtaining confidential information by manipulating and/or deceiving people.
Criminals can obtain information on company personnel, customers, ordering, shipping procedures, payment methods, and other information for a fraudulent transaction through impersonation, email correspondence, research on social media, or other means.
So, be careful of the information provided to the public by email, website, social media, or phone.
Also, confirm the identity of the person to whom you are talking. If the interaction includes a transaction, call the known customer on the telephone to confirm there hasn’t been fraudulent impersonation.
6. Avoid visiting questionable and risky sites.
7. Don’t download questionable apps from obscure or unknown companies.
8. Have a written cyber security policy that employees must read and sign.
9. Have regular staff meetings and periodic reviews of cyber protocols for the business.
The Latest
FinancialsMay 30, 2025
Movado’s Q1 Sales Slip Amid ‘Challenging’ Retail Environment The company plans to raise the prices of select watches to offset the impact of tariffs.
Policies & IssuesMay 30, 2025
Tariffs & Designers: Navigating Pricing in an Unstable EnvironmentBetween tariffs and the sky-high cost of gold, designers enter this year’s Las Vegas shows with a lot of questions and few answers.
CollectionsMay 30, 2025
Piece of the Week: Renato Cipullo’s ‘Hematite Blaze’ NecklaceDesigned by founder Renato and his daughter Serena Cipullo, it showcases a flame motif representing unity and the power of gathering.
Brought to you by
Clienteling Isn’t a Buzzword. It’s an Essential Business Model.More shoppers are walking out without buying. Here’s how smart jewelers can bring them back—and the tool they need to do it right.
Policies & IssuesMay 30, 2025
Trade Court Declares Trump’s Tariffs InvalidHowever, the tariffs remain in effect in the short term, as an appeals court has stayed the U.S. Court of International Trade’s decision.
Weekly QuizMay 30, 2025
This Week’s QuizTest your jewelry news knowledge by answering these questions.
CollectionsMay 29, 2025
Britney Spears Files Trademark for New Jewelry LineThe pop icon is one step closer to launching her “B Tiny” jewelry collection, a collection she first began posting about last fall.
Supplier BulletinMay 29, 2025
Inoveo Platinum Grain, Exclusively Distributed by StullerSponsored by Stuller
Brought to you by
Las Vegas Antique Jewelry & Watch Show: Showcasing the Most Collectible Merchandise from Across the GlobeGain access to the most exclusive and coveted antique pieces from trusted dealers during Las Vegas Jewelry Week.
SourcingMay 29, 2025
Grizzly Auctions 6,620-Carat EmeraldIt was featured in the miner’s latest sale, which brought in $24.8 million.
TechnologyMay 29, 2025
GemFind Launches AI Product Description SoftwareGemText AI uses artificial intelligence to generate tailored product titles, descriptions, and tags with jewelry-specific language.
MajorsMay 28, 2025
Graff Unveils New Las Vegas FlagshipThe 3,300-square foot location is the jeweler's largest store in North America.
CollectionsMay 28, 2025
NY Liberty’s 2024 Championship Rings Honor Historic WinThe WNBA team received rings imbued with meaning, from leaf motifs and its Liberty torch to the number of diamonds used.
MajorsMay 28, 2025
Andrew Rickard Named JBT PresidentA longtime executive at RDI Diamonds, Rickard has served on the JBT board for the past five years.
MajorsMay 27, 2025
MJSA to Become Part of Jewelers of America The two organizations have signed an affiliation agreement that’s expected to be finalized in the coming weeks.
AuctionsMay 27, 2025
Al Capone’s Patek Philippe Pocket Watch Back Up for AuctionThe platinum and diamond watch is part of Sotheby’s upcoming Important Watches sale.
AuctionsMay 27, 2025
182-Carat Paraíba-Type Tourmaline Sells for $487K Recovered in Mozambique, “The Kat Florence Lumina” was part of Bonhams’ Hong Kong jewelry auction held last week.
TrendsMay 27, 2025
Amanda’s Style File: Candy-Colored GemstonesGet a taste of the delicious candy-like gemstones in this Amanda’s Style File.
CollectionsMay 23, 2025
Piece of the Week: Bliss Lau’s ‘Bright’ RingFrom Lau’s “Love of a Kind” series, the engagement ring was inspired by the moon and holds a different meaning depending on how it is worn.
GradingMay 23, 2025
GIA Updates Pearl Classification SystemThe lab has adjusted the scale it uses for nacre grading.
Supplier BulletinMay 22, 2025
How to Put Natural Diamonds Back in the SpotlightSponsored by GCAL by Sarine
CrimeMay 22, 2025
NY Jeweler Sentenced in Shoving Death of Colleague at IJO ShowDavid Walton will serve three years’ probation after an incident in a hotel bar led to the death of West Virginia jeweler David Ettinger.
FinancialsMay 22, 2025
Watches of Switzerland’s Full-Year U.S. Sales Climb 14% The retailer also provided an update on how the tariffs situation in the U.S. is affecting its business.
IndependentsMay 22, 2025
Adeler Jewelers Celebrates 50 YearsThe family-owned jeweler in Great Falls, Virginia, will be celebrating its golden jubilee with a year’s worth of events.
Events & AwardsMay 22, 2025
Jose Hess Design Awards Announce JudgesThe nonprofit elected five judges who will decide the winners of its design competition.
MajorsMay 22, 2025
MJSA Releases 2025-2026 Buyer’s GuideThis year’s edition includes articles on the favorite tools of notable designers, evaluating when to outsource production, and more.
CollectionsMay 21, 2025
Bulgari Highlights Its Colorful Past in Phenomenal ‘Polychroma’ CollectionThe jeweler’s high jewelry collection features extraordinary gemstones, like a 241.06-carat emerald and the world’s fourth-largest spinel.
ColumnistsMay 21, 2025
Edahn’s Take: Analyzing the 2025 ‘$100 Million Supersellers’ List In a special column for the State of the Majors, Edahn Golan breaks down what the top-performing fine jewelry sellers are doing right.
