Russian ransomware gang Conti released the details of 11,000 clients of diamond jeweler Graff yesterday, apparently deciding to make good on its threats to publish the data of malware-infected businesses that refused to pay the ransom. The story, initially broken by The Daily Mail, describes those named in the leaked files as a veritable list of “world leaders, Hollywood A-listers and billionaire tycoons.”
Among the published documents are receipts, invoices, client lists and credit notes which equal an approximated total of 69,000 documents.
Some of the many celebrities named in a list include Tom Hanks, Samuel L. Jackson, and Alec Baldwin. Documents provided in leaks show addresses associated with Donald and Melania Trump, and records of purchases made by David and Victoria Beckham. Other notable figures to be mentioned within the documents include disgraced socialite Ghislane Maxwell and Saudi Crown Prince Mohammed bin Salman.
“’Given the profile of the customer database, this is absolutely massive,” a former colonel in British military intelligence told The Daily Mail. “This is going to bring the highest levels of international law enforcement down on the gang,” he added.
A Conti-run clearnet site that posted snippets of hacked records and documents was updated days after the posting of a long-winded rant in which they praised REvil and ranted against the U.S. government. Security researchers believe a recent shift in Conti’s business model may have underpinned their decision to make the Graff files public.
Based in London, Graff was founded in 1960 and is considered to be one of the worlds pre-eminent jewelers, with 50 stores worldwide. A spokesperson for Graff described the cyber-attack as “limited” and noted that only addresses and other publicly-available information was exposed. The information could still potentially be used as leverage against certain customers and the true damage of the attack’s fallout remains to be ascertained.