CrimeDec 09, 2020
In the Wake of the Cyberattack on Stuller, 5 Tips on CybersecurityCrimeNov 02, 2021
Graff Gets Hit by Ransomware Attack
The data breach included some personal details of high-end clients.
Graff is known for its high jewelry, counting celebrities and world leaders among its clients. Pictured here is the “New Dawn” necklace from Graff’s “Tribal” collection, featuring 64 total carats of diamonds in 18-karat white gold.
London—High-end jeweler Graff has become the victim of a ransomware attack.
Ransomware is malware that uses encryption to hold a victim’s system or personal files and demands payment to get them back.
For most people involved in the Graff data breach, it included details like their name and potentially their home address—which can be retrieved in the public domain from other sources– rather than any other confidential details that would put them at risk of identity theft.
A Graff spokesperson said the brand informed “the small group of individuals whose personal data was compromised to such an extent” and advised them on the appropriate steps to take.
The brand’s security systems alerted it to the activity, allowing it to react quickly and shut down its network.
Graff said it has been working with the U.K.’s Information Commissioner’s Office and relevant law enforcement on the incident.
“Thanks to our robust back-up facilities we were able to rebuild and restart our systems within days - crucially with no irretrievable loss of data,” the spokesperson said.
“Sadly, it appears that notable brands, corporations and even government departments are deliberately targeted by unscrupulous operators to extort money, cause disruption or simply embarrassment. Cybercrime continues to rise in scale and complexity. It is a threat to every business. Maintaining the highest level of security against these threats has always been a top priority for us. We are continually strengthening our systems to counter these threats as they evolve.”
The group known as Conti is said to be behind the attack, the U.K.’s The Times reported, leaking the details of the brand’s high-end clientele to the dark web.
In a September press release, the Cybersecurity and Infrastructure Security Agency said it and the Federal Bureau of Investigation had seen an increase in the use of Conti ransomware in more than 400 attacks on U.S. and international organizations.
Earlier this year, the FBI said it had identified at least 16 Conti ransomware attacks that targeted healthcare and first responder networks in the U.S.
Related stories will be right here …
Ransomware is malware that uses encryption to hold a victim’s system or personal files and demands payment to get them back.
For most people involved in the Graff data breach, it included details like their name and potentially their home address—which can be retrieved in the public domain from other sources– rather than any other confidential details that would put them at risk of identity theft.
A Graff spokesperson said the brand informed “the small group of individuals whose personal data was compromised to such an extent” and advised them on the appropriate steps to take.
The brand’s security systems alerted it to the activity, allowing it to react quickly and shut down its network.
Graff said it has been working with the U.K.’s Information Commissioner’s Office and relevant law enforcement on the incident.
“Thanks to our robust back-up facilities we were able to rebuild and restart our systems within days - crucially with no irretrievable loss of data,” the spokesperson said.
“Sadly, it appears that notable brands, corporations and even government departments are deliberately targeted by unscrupulous operators to extort money, cause disruption or simply embarrassment. Cybercrime continues to rise in scale and complexity. It is a threat to every business. Maintaining the highest level of security against these threats has always been a top priority for us. We are continually strengthening our systems to counter these threats as they evolve.”
The group known as Conti is said to be behind the attack, the U.K.’s The Times reported, leaking the details of the brand’s high-end clientele to the dark web.
In a September press release, the Cybersecurity and Infrastructure Security Agency said it and the Federal Bureau of Investigation had seen an increase in the use of Conti ransomware in more than 400 attacks on U.S. and international organizations.
Earlier this year, the FBI said it had identified at least 16 Conti ransomware attacks that targeted healthcare and first responder networks in the U.S.
While the hacks that tend to make headlines are the bigger ones, small businesses should also protect themselves against such crimes.
The Jewelers’ Security Alliance recommends the following actions to prevent cybercrime.
1. Have proper firewalls, anti-virus, and anti-malware for all systems, and keep them up to date.
2. Don’t let employees use company internet-connected devices at work for personal use or download software without permission. Additionally, don’t let them introduce personal memory sticks into a company system.
3. Have strong, unique passwords.
4. Beware of phishing. One of the main pathways for cyber criminals is to lead someone to open and click on a link in an email which will unleash malware to penetrate the system, JSA said.
So, don’t open or click on unknown or suspicious emails. Even emails from people and customers or vendors that might seem familiar can be spoof emails or from someone who has obtained an email address only slightly different from a real email address.
Additionally, look for unfamiliar foreign domains, misspellings, and other anomalies.
5. Beware of social engineering, which is obtaining confidential information by manipulating and/or deceiving people.
Criminals can obtain information on company personnel, customers, ordering, shipping procedures, payment methods, and other information for a fraudulent transaction through impersonation, email correspondence, research on social media, or other means.
So, be careful of the information provided to the public by email, website, social media, or phone.
Also, confirm the identity of the person to whom you are talking. If the interaction includes a transaction, call the known customer on the telephone to confirm there hasn’t been fraudulent impersonation.
6. Avoid visiting questionable and risky sites.
7. Don’t download questionable apps from obscure or unknown companies.
8. Have a written cyber security policy that employees must read and sign.
9. Have regular staff meetings and periodic reviews of cyber protocols for the business.
More on Crime
The Latest
EditorsNov 22, 2024
Out & About: Inside the CD Peacock MansionStep inside the nearly 21,000-square-foot suburban Chicago jewelry store with Editor-in-Chief Michelle Graff.
CollectionsNov 22, 2024
Piece of the Week: Xander Jane’s ‘Spiked’ Pearl StudsThese punk-inspired earrings from the new Canadian brand’s debut collection reveal the alter ego of the classic pearl.
SourcingNov 22, 2024
Facets of Fire Expands to Include Pear, Marquise DiamondsThe company brings its nanotechnology to two new fancy cuts for diamonds that feature its signature color and brilliance.
Brought to you by
Navigating Cybersecurity: Essential Guidance for JewelersFrom protecting customer data to safeguarding inventory records, it's crucial to learn how to tackle cybersecurity challenges.
Supplier BulletinNov 21, 2024
Tasha R Releases 2025 Labbelle Lab Diamond Jewelry CatalogSponsored by Tasha R
Weekly QuizNov 21, 2024
This Week’s QuizTest your jewelry news knowledge by answering these questions.
AuctionsNov 21, 2024
Gold Watch Gifted to Titanic Rescue Ship Captain Sells for $2MThree Titanic survivors presented him with the personalized Tiffany & Co. timepiece about a year after the tragedy.
MajorsNov 21, 2024
Harris Jewelry Ordered to Reopen Claims Portal for Refund RequestsA federal court found that the jewelry store chain violated terms of the settlement reached after it was accused of defrauding customers.
Brought to you by
Enhance Your Expertise with IGI’s In-Person Courses in NYCThis fall, sharpen your skills in jewelry grading, quality control and diamond assessment.
CollectionsNov 21, 2024
Channel Elphaba in Muse’s ‘Have a Heart x Cynthia Erivo’ CollectionCynthia Erivo chose Dreams of Hope, an organization dedicated to empowering LGBTQA+ youth, as the charity for this year’s collection.
MajorsNov 21, 2024
Rocksbox Opens Pop-Up Store in San FranciscoThe new space was designed to evoke a warm, inviting vibe.
IndependentsNov 21, 2024
Mary Moses Kinney Is Now Part of The Edge’s Team Kinney, who spent nearly 30 years at IJO, has been hired to head Abbott Jewelry Systems’ new virtual marketplace.
Events & AwardsNov 20, 2024
Kering Debuts New Jewelry Award With Sustainability FocusThe four finalists will present their pieces at the 2025 JCK Las Vegas show.
CollectionsNov 20, 2024
Pamela Love Channels Surrealist Artists in New CollectionThe “Camera Oscura” collection showcases earring designs celebrating female Surrealist artists Claude Cahun and Leonor Fini.
Policies & IssuesNov 20, 2024
Columbia Gem House Raises $10K for Reforestation EffortsThe money will fund the planting of 10,000 trees in critical areas across Oregon, Arizona, Montana, and other regions.
Events & AwardsNov 20, 2024
The Jewelry Symposium Opens Registration, Scholarship ApplicationsThe event centered on advancing jewelry manufacturing technology will return to Detroit in May 2025.
AuctionsNov 19, 2024
‘A Tsar’s Treasure’ Fetches $2.9M at Sotheby’s Jewelry SaleA collection of pieces owned by Ferdinand I, the first king of modern Bulgaria, and his family, blew away estimates in Geneva last week.
MajorsNov 19, 2024
Trove Opens First US Flagship in NYCThe Australian jewelry box brand’s new West Village store will showcase new jewelers each month through its Designer in Residence program.
CollectionsNov 19, 2024
Snoop Dogg’s New Jewelry Collection Is All About Love“Lovechild” was created in partnership with Carolyn Rafaelian’s Metal Alchemist brand.
EditorsNov 18, 2024
Q&A: Helzberg CEO Brad Hampton on the Jeweler’s RebrandHampton discussed how Helzberg is improving the customer experience and why it was inspired by the company formerly known as Dunkin’ Donuts.
Policies & IssuesNov 18, 2024
Reciprocity Jewels Returns to NYC Jewelry WeekThe group will host several curated events and an exhibition of designer jewelry made with Peruvian gold traceable to the miners’ names.
CollectionsNov 18, 2024
Dolly Parton Shines in Collaboration with Kendra ScottThe collection honors the 50th anniversary of Dolly Parton’s “Love is Like a Butterfly” song, which shares a birth year with Kendra Scott.
Events & AwardsNov 18, 2024
IGI Jewelry Design Competition ReturnsThis year’s theme asks designers to take inspiration from classic fairy tales.
EditorsNov 15, 2024
Why Fine Jewelry Belongs at New York Comic ConSenior Editor Lenore Fedow makes the case for why more jewelers should be appealing to nerds at the annual event.
CollectionsNov 15, 2024
Marie Lichtenberg Battles Counterfeits with New ‘Raiz’in Scapular’ DesignsThe latest “Raiz’in” drop showcases a newly designed “Scapular” necklace and donates a portion of the proceeds to Make-A-Wish France.
WatchesNov 15, 2024
Piece of the Week: Citizen’s Commemorative Pocket WatchNo. 1 out of 100, the timepiece was created to mark Citizen’s 100th anniversary and will be auctioned off at Sotheby’s next month.
Recorded WebinarsNov 15, 2024
Watch: 10 Tips to Keep Your Jewelry Store Secure On the latest episode of “My Next Question,” two experts share best practices for store security during the holidays and year-round.
AuctionsNov 14, 2024
18th-Century Diamond Necklace Sells for Nearly $5M Sotheby’s sold the necklace, which potentially has ties to Marie-Antoinette, for $4.8 million to a woman bidding via phone.
