CrimeDec 09, 2020
In the Wake of the Cyberattack on Stuller, 5 Tips on CybersecurityCrimeNov 02, 2021
Graff Gets Hit by Ransomware Attack
The data breach included some personal details of high-end clients.
Graff is known for its high jewelry, counting celebrities and world leaders among its clients. Pictured here is the “New Dawn” necklace from Graff’s “Tribal” collection, featuring 64 total carats of diamonds in 18-karat white gold.
London—High-end jeweler Graff has become the victim of a ransomware attack.
Ransomware is malware that uses encryption to hold a victim’s system or personal files and demands payment to get them back.
For most people involved in the Graff data breach, it included details like their name and potentially their home address—which can be retrieved in the public domain from other sources– rather than any other confidential details that would put them at risk of identity theft.
A Graff spokesperson said the brand informed “the small group of individuals whose personal data was compromised to such an extent” and advised them on the appropriate steps to take.
The brand’s security systems alerted it to the activity, allowing it to react quickly and shut down its network.
Graff said it has been working with the U.K.’s Information Commissioner’s Office and relevant law enforcement on the incident.
“Thanks to our robust back-up facilities we were able to rebuild and restart our systems within days - crucially with no irretrievable loss of data,” the spokesperson said.
“Sadly, it appears that notable brands, corporations and even government departments are deliberately targeted by unscrupulous operators to extort money, cause disruption or simply embarrassment. Cybercrime continues to rise in scale and complexity. It is a threat to every business. Maintaining the highest level of security against these threats has always been a top priority for us. We are continually strengthening our systems to counter these threats as they evolve.”
The group known as Conti is said to be behind the attack, the U.K.’s The Times reported, leaking the details of the brand’s high-end clientele to the dark web.
In a September press release, the Cybersecurity and Infrastructure Security Agency said it and the Federal Bureau of Investigation had seen an increase in the use of Conti ransomware in more than 400 attacks on U.S. and international organizations.
Earlier this year, the FBI said it had identified at least 16 Conti ransomware attacks that targeted healthcare and first responder networks in the U.S.
Related stories will be right here …
Ransomware is malware that uses encryption to hold a victim’s system or personal files and demands payment to get them back.
For most people involved in the Graff data breach, it included details like their name and potentially their home address—which can be retrieved in the public domain from other sources– rather than any other confidential details that would put them at risk of identity theft.
A Graff spokesperson said the brand informed “the small group of individuals whose personal data was compromised to such an extent” and advised them on the appropriate steps to take.
The brand’s security systems alerted it to the activity, allowing it to react quickly and shut down its network.
Graff said it has been working with the U.K.’s Information Commissioner’s Office and relevant law enforcement on the incident.
“Thanks to our robust back-up facilities we were able to rebuild and restart our systems within days - crucially with no irretrievable loss of data,” the spokesperson said.
“Sadly, it appears that notable brands, corporations and even government departments are deliberately targeted by unscrupulous operators to extort money, cause disruption or simply embarrassment. Cybercrime continues to rise in scale and complexity. It is a threat to every business. Maintaining the highest level of security against these threats has always been a top priority for us. We are continually strengthening our systems to counter these threats as they evolve.”
The group known as Conti is said to be behind the attack, the U.K.’s The Times reported, leaking the details of the brand’s high-end clientele to the dark web.
In a September press release, the Cybersecurity and Infrastructure Security Agency said it and the Federal Bureau of Investigation had seen an increase in the use of Conti ransomware in more than 400 attacks on U.S. and international organizations.
Earlier this year, the FBI said it had identified at least 16 Conti ransomware attacks that targeted healthcare and first responder networks in the U.S.
While the hacks that tend to make headlines are the bigger ones, small businesses should also protect themselves against such crimes.
The Jewelers’ Security Alliance recommends the following actions to prevent cybercrime.
1. Have proper firewalls, anti-virus, and anti-malware for all systems, and keep them up to date.
2. Don’t let employees use company internet-connected devices at work for personal use or download software without permission. Additionally, don’t let them introduce personal memory sticks into a company system.
3. Have strong, unique passwords.
4. Beware of phishing. One of the main pathways for cyber criminals is to lead someone to open and click on a link in an email which will unleash malware to penetrate the system, JSA said.
So, don’t open or click on unknown or suspicious emails. Even emails from people and customers or vendors that might seem familiar can be spoof emails or from someone who has obtained an email address only slightly different from a real email address.
Additionally, look for unfamiliar foreign domains, misspellings, and other anomalies.
5. Beware of social engineering, which is obtaining confidential information by manipulating and/or deceiving people.
Criminals can obtain information on company personnel, customers, ordering, shipping procedures, payment methods, and other information for a fraudulent transaction through impersonation, email correspondence, research on social media, or other means.
So, be careful of the information provided to the public by email, website, social media, or phone.
Also, confirm the identity of the person to whom you are talking. If the interaction includes a transaction, call the known customer on the telephone to confirm there hasn’t been fraudulent impersonation.
6. Avoid visiting questionable and risky sites.
7. Don’t download questionable apps from obscure or unknown companies.
8. Have a written cyber security policy that employees must read and sign.
9. Have regular staff meetings and periodic reviews of cyber protocols for the business.
More on Crime
The Latest
CollectionsJan 27, 2026
De Beers London, GemFair Debut New Collection Highlighting Artisanal DiamondsThe collection marks the first time GemFair’s artisanal diamonds will be brought directly to consumers.
SourcingJan 27, 2026
GemGuide Launches Pricing for Montana SapphiresThe initial charts are for blue, teal, and green material, each grouped into three charts categorized as good, fine, and extra fine.
TechnologyJan 27, 2026
Clientbook Launches Appointment Booking ToolThe new tool can assign the appropriate associate based on the client or appointment type and automate personalized text message follow-ups.
Brought to you by
How Jewelers Can Fight Back Against Cell JammersCriminals are using cell jammers to disable alarms, but new technology like JamAlert™ can stop them.
SourcingJan 26, 2026
Tucson Preview 2026: Earthy Tones and Innovative Shapes Buyers are expected to gravitate toward gemstones that have a little something special, just like last year.
Weekly QuizJan 22, 2026
This Week’s QuizTest your jewelry news knowledge by answering these questions.
SourcingJan 26, 2026
Angolan Diamond Cos. Join NDC as Rio Tinto, Murowa Exit Endiama and Sodiam will contribute money to the marketing of natural diamonds as new members of the Natural Diamond Council.
MajorsJan 26, 2026
Francesca’s To Close All StoresThe retailer operates more than 450 boutiques across 45 states, according to its website.
Brought to you by
Impacting Tomorrow TodayHow Jewelers of America’s 20 Under 40 are leading to ensure a brighter future for the jewelry industry.
MajorsJan 26, 2026
BIJC Names 5 New Board MembersThe new members’ skills span communications, business development, advocacy, and industry leadership.
CollectionsJan 26, 2026
Tiffany & Co. Celebrates 189 Years of Love StoriesThe jeweler’s 2026 Valentine’s Day campaign, “Celebrating Love Stories Since 1837,” includes a short firm starring actress Adria Arjona.
GradingJan 26, 2026
DCA Updates Colored Gemstone CourseThe new features include interactive flashcards and scenario-based roleplay with AI tools.
MajorsJan 23, 2026
Watches of Switzerland Acquires 4-Store Jewelry Chain in TexasFamily-owned jewelry and watch retailer Deutsch & Deutsch has stores in El Paso, Laredo, McAllen, and Victoria.
WatchesJan 23, 2026
Damiani Group to Acquire Baume & MercierThe Italian luxury company purchased the nearly 200-year-old Swiss watch brand from Richemont.
TrendsJan 23, 2026
Martin Katz’s Earrings Call to Mind Wintry Weather Micro-set with hundreds of diamonds, these snowflake earrings recreate “winter’s most elegant silhouette,” and are our Piece of the Week.
MajorsJan 23, 2026
Rembrandt Charms Names New Director of Creative, Brand StrategyElla Blum was appointed to the newly created role.
Supplier BulletinJan 22, 2026
The Rise of Centralized Sourcing in the Colored Gemstone MarketSponsored by RapNet
MajorsJan 22, 2026
Lugano Diamonds Finds a BuyerInvestment firm Enhanced Retail Funding, a division of Gordon Brothers, was the successful bidder.
SourcingJan 22, 2026
De Beers To Release ‘A Diamond Is Forever’ BookIt explores the history of the iconic tagline and the company’s strategy to redefine the role of diamonds in society.
MajorsJan 22, 2026
Swarovski Appoints New North America PresidentRetail veteran Sindhu Culas has stepped into the role.
MajorsJan 22, 2026
Stuller Names New Chief Merchandising, Marketing, Sales OfficerTaylor Burgess, who has been at Stuller since 2013, was promoted to the newly created role.
PodcastsJan 21, 2026
Episode 1: High Gold Prices, the Diamond Dilemma, & What’s NextWas 2025 a good year for jewelers? Did lab-grown diamonds outsell natural? Find out on the first episode of the “My Next Question” podcast.
EditorsJan 21, 2026
6 Jewelry Designers Poised to Have a Breakout Year in 2026Whether you recognize their jewels or are just discovering them now, these designers’ talent and vision make them ones to watch this year.
IndependentsJan 21, 2026
Delaware Jeweler Felice Morris Dies at 91Morris’ most cherished role was being a mother and grandmother, her family said.
CollectionsJan 21, 2026
Bulgari Weaves New Collection of ‘Vimini’ Creations“Vimini” is the first chapter of the “Bulgari Eternal” collection that merges archival pieces with modern creations.
Events & AwardsJan 21, 2026
Jewelers Mutual’s ‘Conversations’ Retreat Returns to Discuss AIThe third edition will be held in Half Moon Bay, California, in April.
Events & AwardsJan 20, 2026
These Are the 5 Finalists for the David Yurman Gem Awards GrantThe grant is in its first year and was created to recognize an exceptional fine jewelry designer whose star is on the rise.
ColumnistsJan 20, 2026
First-Party Data Is the Most Valuable Asset Jewelers Have in 2026Data built on trust, not tracking, will be key to success going forward, as the era of “borrowed attention” ends, Emmanuel Raheb writes.
