Founded in 1976, BECKS is a jewellery maker that crafts high-quality rings for weddings, gifts and premium wear. It also provides services to jewellers, including alloy supply and CAD design, such as casting, moulding, and refining.
Late last week, the SafePay ransomware gang listed BECKS on its dark web leak site, claiming to have exfiltrated data from the company’s network.
By becoming a member, I agree to receive information and promotional messages from Cyber Daily. I can opt out of these communications at any time. For more information, please visit our Privacy Statement.
If you check the box above before you log in, you won’t have to log back into the website next time you return, even if you close your browser and come back later.
If you check this box before you log in, you won’t have to log back into the website next time you return, even if you close your browser and come back later.
Keep me signed in on this device.
To continue reading the rest of this article, please log in.
While the threat actor said nothing beyond suggesting it would release the data by Tuesday AEST, BECKS issued a statement regarding the incident, saying it had already contacted customers and stakeholders of the incident.
“As soon as we became aware of the incident, we took immediate steps to contain its impact and escalate the matter to relevant authorities, including the Australian Cyber Security Centre, the Office of the Australian Information Commissioner and South Australia Police
Beck Group cybersecurity rating report: https://www.rankiteo.com/company/beckgroup
"id": "BEC1765173759",
"linkid": "beckgroup",
"type": "Ransomware",
"date": "12/2025",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"{'incident': {'affected_entities': [{'customers_affected': None,
'industry': 'Jewellery',
'location': 'Australia',
'name': 'BECKS',
'size': None,
'type': 'Company'}],
'customer_advisories': True,
'data_breach': {'data_encryption': None,
'data_exfiltration': True,
'file_types_exposed': None,
'number_of_records_exposed': None,
'personally_identifiable_information': None,
'sensitivity_of_data': None,
'type_of_data_compromised': None},
'description': 'SafePay ransomware gang listed BECKS on its dark '
'web leak site, claiming to have exfiltrated data '
'from the company’s network. BECKS confirmed the '
'incident and notified customers, stakeholders, '
'and relevant authorities.',
'impact': {'brand_reputation_impact': None,
'conversion_rate_impact': None,
'customer_complaints': None,
'data_compromised': True,
'downtime': None,
'financial_loss': None,
'identity_theft_risk': None,
'legal_liabilities': None,
'operational_impact': None,
'payment_information_risk': None,
'revenue_loss': None,
'systems_affected': None},
'initial_access_broker': {'backdoors_established': None,
'data_sold_on_dark_web': None,
'entry_point': None,
'high_value_targets': None,
'reconnaissance_period': None},
'post_incident_analysis': {'corrective_actions': None,
'root_causes': None},
'ransomware': {'data_encryption': None,
'data_exfiltration': True,
'ransom_demanded': None,
'ransom_paid': None,
'ransomware_strain': 'SafePay'},
'references': [{'date_accessed': None,
'source': 'Cyber Daily',
'url': None}],
'regulatory_compliance': {'fines_imposed': None,
'legal_actions': None,
'regulations_violated': None,
'regulatory_notifications': ['Australian '
'Cyber '
'Security '
'Centre',
'Office '
'of the '
'Australian '
'Information '
'Commissioner',
'South '
'Australia '
'Police']},
'response': {'adaptive_behavioral_waf': None,
'communication_strategy': True,
'containment_measures': True,
'enhanced_monitoring': None,
'incident_response_plan_activated': True,
'law_enforcement_notified': True,
'network_segmentation': None,
'on_demand_scrubbing_services': None,
'recovery_measures': None,
'remediation_measures': None,
'third_party_assistance': None},
'stakeholder_advisories': True,
'threat_actor': 'SafePay ransomware gang',
'title': 'BECKS Ransomware Attack by SafePay Gang',
'type': 'Ransomware'}}