CrimeDec 09, 2020
In the Wake of the Cyberattack on Stuller, 5 Tips on CybersecurityCrimeNov 02, 2021
Graff Gets Hit by Ransomware Attack
The data breach included some personal details of high-end clients.
Graff is known for its high jewelry, counting celebrities and world leaders among its clients. Pictured here is the “New Dawn” necklace from Graff’s “Tribal” collection, featuring 64 total carats of diamonds in 18-karat white gold.
London—High-end jeweler Graff has become the victim of a ransomware attack.
Ransomware is malware that uses encryption to hold a victim’s system or personal files and demands payment to get them back.
For most people involved in the Graff data breach, it included details like their name and potentially their home address—which can be retrieved in the public domain from other sources– rather than any other confidential details that would put them at risk of identity theft.
A Graff spokesperson said the brand informed “the small group of individuals whose personal data was compromised to such an extent” and advised them on the appropriate steps to take.
The brand’s security systems alerted it to the activity, allowing it to react quickly and shut down its network.
Graff said it has been working with the U.K.’s Information Commissioner’s Office and relevant law enforcement on the incident.
“Thanks to our robust back-up facilities we were able to rebuild and restart our systems within days - crucially with no irretrievable loss of data,” the spokesperson said.
“Sadly, it appears that notable brands, corporations and even government departments are deliberately targeted by unscrupulous operators to extort money, cause disruption or simply embarrassment. Cybercrime continues to rise in scale and complexity. It is a threat to every business. Maintaining the highest level of security against these threats has always been a top priority for us. We are continually strengthening our systems to counter these threats as they evolve.”
The group known as Conti is said to be behind the attack, the U.K.’s The Times reported, leaking the details of the brand’s high-end clientele to the dark web.
In a September press release, the Cybersecurity and Infrastructure Security Agency said it and the Federal Bureau of Investigation had seen an increase in the use of Conti ransomware in more than 400 attacks on U.S. and international organizations.
Earlier this year, the FBI said it had identified at least 16 Conti ransomware attacks that targeted healthcare and first responder networks in the U.S.
Related stories will be right here …
Ransomware is malware that uses encryption to hold a victim’s system or personal files and demands payment to get them back.
For most people involved in the Graff data breach, it included details like their name and potentially their home address—which can be retrieved in the public domain from other sources– rather than any other confidential details that would put them at risk of identity theft.
A Graff spokesperson said the brand informed “the small group of individuals whose personal data was compromised to such an extent” and advised them on the appropriate steps to take.
The brand’s security systems alerted it to the activity, allowing it to react quickly and shut down its network.
Graff said it has been working with the U.K.’s Information Commissioner’s Office and relevant law enforcement on the incident.
“Thanks to our robust back-up facilities we were able to rebuild and restart our systems within days - crucially with no irretrievable loss of data,” the spokesperson said.
“Sadly, it appears that notable brands, corporations and even government departments are deliberately targeted by unscrupulous operators to extort money, cause disruption or simply embarrassment. Cybercrime continues to rise in scale and complexity. It is a threat to every business. Maintaining the highest level of security against these threats has always been a top priority for us. We are continually strengthening our systems to counter these threats as they evolve.”
The group known as Conti is said to be behind the attack, the U.K.’s The Times reported, leaking the details of the brand’s high-end clientele to the dark web.
In a September press release, the Cybersecurity and Infrastructure Security Agency said it and the Federal Bureau of Investigation had seen an increase in the use of Conti ransomware in more than 400 attacks on U.S. and international organizations.
Earlier this year, the FBI said it had identified at least 16 Conti ransomware attacks that targeted healthcare and first responder networks in the U.S.
While the hacks that tend to make headlines are the bigger ones, small businesses should also protect themselves against such crimes.
The Jewelers’ Security Alliance recommends the following actions to prevent cybercrime.
1. Have proper firewalls, anti-virus, and anti-malware for all systems, and keep them up to date.
2. Don’t let employees use company internet-connected devices at work for personal use or download software without permission. Additionally, don’t let them introduce personal memory sticks into a company system.
3. Have strong, unique passwords.
4. Beware of phishing. One of the main pathways for cyber criminals is to lead someone to open and click on a link in an email which will unleash malware to penetrate the system, JSA said.
So, don’t open or click on unknown or suspicious emails. Even emails from people and customers or vendors that might seem familiar can be spoof emails or from someone who has obtained an email address only slightly different from a real email address.
Additionally, look for unfamiliar foreign domains, misspellings, and other anomalies.
5. Beware of social engineering, which is obtaining confidential information by manipulating and/or deceiving people.
Criminals can obtain information on company personnel, customers, ordering, shipping procedures, payment methods, and other information for a fraudulent transaction through impersonation, email correspondence, research on social media, or other means.
So, be careful of the information provided to the public by email, website, social media, or phone.
Also, confirm the identity of the person to whom you are talking. If the interaction includes a transaction, call the known customer on the telephone to confirm there hasn’t been fraudulent impersonation.
6. Avoid visiting questionable and risky sites.
7. Don’t download questionable apps from obscure or unknown companies.
8. Have a written cyber security policy that employees must read and sign.
9. Have regular staff meetings and periodic reviews of cyber protocols for the business.
More on Crime
The Latest
SourcingFeb 27, 2026
South African Diamond Mine Closes Amid Search for Missing WorkersOwners of the Ekapa Mine reportedly filed for liquidation about a week after a mudslide trapped five workers who have yet to be found.
MajorsFeb 27, 2026
Jewelers Mutual to Donate $10M to Savannah College of Art and DesignA 10-year alliance has also begun to address the shortage of bench jewelers through scholarships, enhanced programs, and updated equipment.
CollectionsFeb 27, 2026
Renato Cipullo Turns Gold into HardstonesThe “Splendente” collection has evolved to feature hardstone letter pendants, including our Piece of the Week, the onyx “R.”
Brought to you by
Is This You? Every Jeweler Has This Problem; We Have the Solution.Every jeweler faces the same challenge: helping customers protect what they love. Here’s the solution designed for today’s jewelry business.
AuctionsFeb 26, 2026
Noonans to Auction Lady Wardington’s JewelryThe jewelry collection belonged to “one of society's most glamorous and beautiful women of the mid-20th century,” said the auction house.
Weekly QuizFeb 26, 2026
This Week’s QuizTest your jewelry news knowledge by answering these questions.
SourcingFeb 26, 2026
Anglo American CEO Gives Insight Into De Beers SaleThe update came as Anglo took its third write-down on the diamond miner and marketer, which lost more than $500 million in 2025.
ColumnistsFeb 26, 2026
Practical Ways Jewelers Can Leverage AI in 2026Emmanuel Raheb discusses the rise of “GEO” and the importance of having well-written, quality content on your website.
Brought to you by
DCA Enters a New Chapter in Jewelry EducationWith refreshed branding, a new website, updated courses, and a pathway for growth, DCA is dedicated to supporting retail staff development.
Events & AwardsFeb 26, 2026
GIA Names 2026 Jewelry Design Contest Winner, Retires Annual AwardCatherine Aulick, a GIA graduate, received the ninth and final Gianmaria Buccellati Foundation Award for Excellence in Jewelry Design.
TrendsFeb 25, 2026
Engagement Ring Trends 2026: What’s In, and WhyWe asked a jewelry historian, designer, bridal director, and wedding expert what’s trending in engagement rings. Here’s what they said.
SourcingFeb 25, 2026
7 Trends That Could Define the Diamond Industry’s FutureExperts from India weigh in the politics, policies, and market dynamics for diamantaires to monitor in 2026 and beyond.
EditorsFeb 25, 2026
Q&A: Brilliant Earth’s CEO on the New Beverly Hills StoreBeth Gerstein discusses the vibe of the new store, what customers want when fine jewelry shopping today, and the details of “Date Night.”
PodcastsFeb 25, 2026
Episode 2: Jewelry Trends & Does the Red Carpet Matter?Are arm bands poised to make a comeback? Has red-carpet jewelry become boring? Find out on the second episode of the “My Next Question” podcast.
WatchesFeb 25, 2026
Private Equity Firms Write Down Value of Breitling, Report SaysThe Swiss watchmaker is battling declining sales amid a rapid retail expansion, according to a Financial Times report.
CollectionsFeb 25, 2026
Rahaminov Diamonds’ New Campaign Honors Its MatriarchThe campaign celebrates Giustina Pavanello Rahaminov, the co-founder’s wife and matriarch of the family-owned brand, for her 88th birthday.
IndependentsFeb 25, 2026
Borsheims Names 2025 ‘Ike-It’ Award WinnerRachel Bennett, a senior jeweler who has been with Borsheims since 2004, earned the award.
Policies & IssuesFeb 24, 2026
IEEPA Tariffs Terminated, New 10% Tariff Already ImposedAfter the Supreme Court struck down the IEEPA tariffs, President Trump imposed a 10 percent tax on almost all imports via a different law.
IndependentsFeb 24, 2026
Sherry Smith Now Principal Partner at The Retail SmithsThe industry veteran, who was with The Edge Retail Academy for 14 years, joins her husband at the company he founded in 2022.
IndependentsFeb 24, 2026
Yafa Signed Jewels to Open Store in MiamiThe vintage signed jewelry retailer chose Miami due to growing client demand in the city and the greater Latin American region.
WatchesFeb 24, 2026
Chrono24 Names New VP, U.S. General ManagerFormer Flight Club executive Jin Lee will bring his experience from the sneaker world to the pre-owned watch marketplace.
SourcingFeb 23, 2026
Designer Eddie Sakamoto, a Humble Artist, Dies at 72Sakamoto, who died in mid-January following a sudden illness, is remembered for his humility and his masterful, architectural designs.
Events & AwardsFeb 23, 2026
NYCJAOS Announces Four-Day Spring ShowThe April event will feature a new VIP shopping day requiring a special ticket.
TrendsFeb 23, 2026
Dua Lipa Is Bulgari’s New AmbassadorBulgari chose the British-Albanian singer-songwriter for her powerful and enduring voice in contemporary culture, the jeweler said.
Policies & IssuesFeb 20, 2026
Supreme Court Rules Against Most of President Trump’s TariffsIn a 6-3 ruling, the court said the president exceeded his authority when imposing sweeping tariffs under IEEPA.
ColumnistsFeb 20, 2026
Peter Smith: Happiness, Cavemen, and Jewelry SalesSmith encourages salespeople to ask customers questions that elicit the release of oxytocin, the brain’s “feel-good” chemical.
MajorsFeb 20, 2026
Jewelers Vigilance Committee Names Julie Yoakum Board ChairJVC also announced the election of five new board members.
CollectionsFeb 20, 2026
Boucheron’s ‘Faisceaux’ Brooch Heads to V&A MuseumThe brooch, our Piece of the Week, shows the chromatic spectrum through a holographic coating on rock crystal.
