Login
iscover
Share this article on:
Powered by
MOMENTUM
MEDIA
Powered by MOMENTUMMEDIA
An Australian jewellery brand has confirmed that it suffered a cyber incident, following claims made by ransomware group SafePay.
Founded in 1976, BECKS is a jewellery maker that crafts high-quality rings for weddings, gifts and premium wear. It also provides services to jewellers, including alloy supply and CAD design, such as casting, moulding, and refining.
Late last week, the SafePay ransomware gang listed BECKS on its dark web leak site, claiming to have exfiltrated data from the company’s network.
While the threat actor said nothing beyond suggesting it would release the data by Tuesday AEST, BECKS issued a statement regarding the incident, saying it had already contacted customers and stakeholders of the incident.
“As soon as we became aware of the incident, we took immediate steps to contain its impact and escalate the matter to relevant authorities, including the Australian Cyber Security Centre, the Office of the Australian Information Commissioner and South Australia Police,” the company said.
BECKS also wrote that its investigation suggests some data has likely been compromised in the incident.
“Initial analysis reveals that some data, potentially including personal information, has likely been compromised,” the company said.
“While the full extent is still being investigated, we have contacted all those affected and have provided advice around practical measures to protect themselves in these circumstances.
“We recommend everyone who has dealt with BECKS, whether historically or currently, remains vigilant in relation to any unexpected communications or requests for information.”
BECKS said that it takes the incident very seriously and that it is continuing to work with relevant agencies. It added that it will provide further updates as the investigation continues.
“On behalf of BECKS Group Australia, we sincerely apologise for the disruption and inconvenience and thank you for your understanding while we work through this situation,” it said.
SafePay is a relatively new player in the ransomware game, having first been observed active in October 2024.
The group has been observed targeting businesses in Australia, the United Kingdom, the United States, Italy, New Zealand, Canada, Belgium, Brazil, Germany, Barbados, and Argentina, and, according to the group, is not a ransomware-as-a-service (RaaS) operation.
“SafePay ransomware has never provided and does not provide the RaaS,” it said on its dark web leak site.
Be the first to hear the latest developments in the cyber industry.
