With discreet exclusivity at the heart of its luxury operations, a data breach will have come as a major blow to high-end jeweller Graff.
The London-based multinational has been attacked by notorious ransomware gang Conti, stealing 69,000 confidential documents to demand what’s believed to be millions of pounds in ransom to unlock the now-frozen data.
The gang, who are believed to operate out of Russia, is claiming that the confidential information it has already leaked, involving about 11,000 of Graff’s clients, represents just 1% of the files stolen.
So far, Conti has begun leaking some of the files on the dark web, with high-profile names being mentioned, such as David and Victoria Beckham, Tom Hanks, Oprah Winfrey, Donald Trump and Sir Philip Green, the former Topshop boss. The Mail on Sunday, which first reported the hack, said that the documents stolen included client lists, invoices, receipts and credit notes. A spokesman for Graff said: “Regrettably we, in common with a number of businesses have recently been the target of a sophisticated though limited cyberattack. “We were alerted to their intrusive activity by our security systems, allowing us to react swiftly and shut down our network. We have informed those individuals whose personal data was affected and have advised them on the appropriate steps to take.” Another spokeswoman for the company also told the newspaper that the “vast majority” of its clients did not suffer any personal data loss, with the leaked documents simply showing their name, and in “some limited cases” their home address.