Surveys

Report: US Retailers Are Top Targets for Data Breaches

SurveysAug 02, 2018

Report: US Retailers Are Top Targets for Data Breaches

According to the 2018 Thales Data Threat Report, U.S. retailers experienced twice as many IT security breaches than other retailers worldwide last year.

New York—A new report says that retailers in the United States are experiencing the most IT security breaches worldwide.

The retail edition of the 2018 Thales Data Threat Report based its findings on input from 100 senior retail IT security managers in the U.S. and 96 IT security managers from retailers in other countries to establish the state of IT security today.

It found that despite an increase in IT security spending—84 percent of U.S. retailers polled plan on upping their budgets this year, compared to 77 percent last year and 67 percent of international retailers this year—cyber-attackers are by and large staying one step ahead of companies.

Fifty percent of U.S. retailers surveyed said they experienced IT security breaches last year alone, compared to 19 percent in the 2017 report. Only 27 percent of global retailers, meanwhile, said they experienced a breach last year.

RELATED CONTENT: Saks, Lord & Taylor the Latest Hit by Hackers
Seventy-five percent of the respondents in the U.S. said they’ve experienced at least one breach, while 60 percent of global retailers said the same.

The retail industry, which is becoming increasingly digital, is a target for cyber attackers due to its high volume of credit card transactions. In fact, Thales says that overall, it’s the second most breached industry in the United States behind the federal government.

The results of the Thales study on IT security in retail mirror what the Jewelers Security Alliance found in its 2017 crime report. The JSA saw such a large uptick in cybercrime last year that for the first time ever, it broke the losses out separately.

The average dollar loss from cybercrime in the jewelry industry was $1.2 million last year, with JSA President John J. Kennedy calling it a “dangerous and growing crime trend.”

A Bad Investment

Despite the uptick in IT security budgets, the Thales report concluded that retailers are putting their money in places that even they recognize to be ineffective. what they themselves deem the most ineffective places.

Of available tools to battle security breaches, 91 percent of U.S. retailers said analysis and correlation tools are the most effective and 90 percent said data-in-motion— providing security for an e-mail in transit while it’s being sent, for example—is the second most effective weapon.

However, they indicated that their highest spending increases would go to endpoint/mobile defenses (77 percent), even though
they ranked this as the least effective security method. Only 57 percent of retailers plan to increase the budget for data-at rest (stored data) defense, and only 62 percent for data-in-motion defenses, despite these being more effective.
RELATED CONTENT: JSA: Smash-and-Grab Robberies, Cybercrime Up in 2017
“Traditional endpoint and network security are no longer sufficient, particularly for heavy adopters of public cloud resources such as the U.S. retail sector,” the report said, especially with the expanding use of external cloud services like SaaS (software as a service), PaaS (platform as a service) and IaaS (infrastructure as a service).

Where the Money Should Go

 Thales asserts that tools like discovery/classification and encryption or tokenization are key to protecting against IT security breaches today.

Only 26 percent of U.S. retailers polled said they are implementing encryption in the cloud, compared with 30 percent of global retailers.

Fifty-two percent of U.S. respondents cited a lack of perceived need as the top reason for not devoting more resources to tools like encryption and tokenization, while 47 percent also cited impact on business performance and 46 percent were put off by its complexity.

In a past interview with National Jeweler, Kennedy offered a list of cybersecurity recommendations for jewelers specifically, some of which might involve hiring an IT firm.

They include: proper firewalls, up-to-date anti-virus software, the avoidance of “risky” internet sites and the training of staff on the types of mistakes that often let in hackers.

Staff need to be told, or reminded, not to open or click into unknown or suspicious emails, and to look carefully at emails from known parties for misspellings and other anomalies as emails addressed can be spoofed.

Thales said that retailers should “re-prioritize” their IT security toolsets, focusing on ones that offer service-based deployments, platforms and automation to reduce complexity while adding protection.

It also recommended that retailers go beyond national and international compliance measures and employ security tools like encryption and tokenization. Encryption needs to be applied to all platforms, not just desktop and laptop computers.

Specifically, Thales recommends encrypting the cloud, big data, data located within containers and IoT (interconnected devices with IP addresses).

It’s likely that compliance guidelines will one day mandate these practices, the report said, so retailers can benefit from getting a head start on them, hopefully avoiding data breaches in the process.
Ashley Davisis the senior editor, fashion at National Jeweler, covering all things related to design, style and trends.

The Latest

Movado Connect 2.0 watches
FinancialsMay 30, 2025
Movado’s Q1 Sales Slip Amid ‘Challenging’ Retail Environment

The company plans to raise the prices of select watches to offset the impact of tariffs.

Zoë Chicco Bracelets
Policies & IssuesMay 30, 2025
Tariffs & Designers: Navigating Pricing in an Unstable Environment

Between tariffs and the sky-high cost of gold, designers enter this year’s Las Vegas shows with a lot of questions and few answers.

Renato Cipullo Hematite Blaze Necklace
CollectionsMay 30, 2025
Piece of the Week: Renato Cipullo’s ‘Hematite Blaze’ Necklace

Designed by founder Renato and his daughter Serena Cipullo, it showcases a flame motif representing unity and the power of gathering.

Article Image 1.png
Brought to you by
Clienteling Isn’t a Buzzword. It’s an Essential Business Model.

More shoppers are walking out without buying. Here’s how smart jewelers can bring them back—and the tool they need to do it right.

Stock image of shipping containers
Policies & IssuesMay 30, 2025
Trade Court Declares Trump’s Tariffs Invalid

However, the tariffs remain in effect in the short term, as an appeals court has stayed the U.S. Court of International Trade’s decision.

Weekly QuizMay 30, 2025
This Week’s Quiz
Test your jewelry news knowledge by answering these questions.
Take the Quiz
Britney Spears
CollectionsMay 29, 2025
Britney Spears Files Trademark for New Jewelry Line

The pop icon is one step closer to launching her “B Tiny” jewelry collection, a collection she first began posting about last fall.

Inoveo Platinum Grain image.jpg
Supplier BulletinMay 29, 2025
Inoveo Platinum Grain, Exclusively Distributed by Stuller

Sponsored by Stuller

antique_Vegas_2024_by_headshot_stories_9454.jpg
Brought to you by
Las Vegas Antique Jewelry & Watch Show: Showcasing the Most Collectible Merchandise from Across the Globe

Gain access to the most exclusive and coveted antique pieces from trusted dealers during Las Vegas Jewelry Week.

Grizzly Mining Pilala emerald
SourcingMay 29, 2025
Grizzly Auctions 6,620-Carat Emerald

It was featured in the miner’s latest sale, which brought in $24.8 million.

GemFind Logo
TechnologyMay 29, 2025
GemFind Launches AI Product Description Software

GemText AI uses artificial intelligence to generate tailored product titles, descriptions, and tags with jewelry-specific language.

Graff Fontainebleau Las Vegas
MajorsMay 28, 2025
Graff Unveils New Las Vegas Flagship

The 3,300-square foot location is the jeweler's largest store in North America.

Kim Kardashian
CrimeMay 28, 2025
8 Convicted in Kim Kardashian Jewelry Heist Trial

Aging and with myriad health issues, none will serve time for their roles in robbing the billionaire celebrity at gunpoint in 2016.

New York Liberty 2024 WNBA Championship Ring
CollectionsMay 28, 2025
NY Liberty’s 2024 Championship Rings Honor Historic Win

The WNBA team received rings imbued with meaning, from leaf motifs and its Liberty torch to the number of diamonds used.

Jewelers Board of Trade logo
MajorsMay 28, 2025
Andrew Rickard Named JBT President

A longtime executive at RDI Diamonds, Rickard has served on the JBT board for the past five years.

Logos for Manufacturing Jewelers & Suppliers of America and Jewelers of America
MajorsMay 27, 2025
MJSA to Become Part of Jewelers of America

The two organizations have signed an affiliation agreement that’s expected to be finalized in the coming weeks.

Al Capone Pocket Watch
AuctionsMay 27, 2025
Al Capone’s Patek Philippe Pocket Watch Back Up for Auction

The platinum and diamond watch is part of Sotheby’s upcoming Important Watches sale.

Kat Florence Lumina
AuctionsMay 27, 2025
182-Carat Paraíba-Type Tourmaline Sells for $487K

Recovered in Mozambique, “The Kat Florence Lumina” was part of Bonhams’ Hong Kong jewelry auction held last week.

Mark Henry Gumdrop Bypass Ring
TrendsMay 27, 2025
Amanda’s Style File: Candy-Colored Gemstones

Get a taste of the delicious candy-like gemstones in this Amanda’s Style File.

Stock image of police cars with their lights on
CrimeMay 23, 2025
JSA Shares Holiday Weekend Security Tips Amid Spike in Burglaries

JSA’s Scott Guginsky provided a list of nine security measures jewelers should observe while locking up for the long weekend.

Bliss Lau Bright Ring
CollectionsMay 23, 2025
Piece of the Week: Bliss Lau’s ‘Bright’ Ring

From Lau’s “Love of a Kind” series, the engagement ring was inspired by the moon and holds a different meaning depending on how it is worn.

GIA pearl report
GradingMay 23, 2025
GIA Updates Pearl Classification System

The lab has adjusted the scale it uses for nacre grading.

GCALbySarine Diamond Journey Certificate_1872x1052.jpg
Supplier BulletinMay 22, 2025
How to Put Natural Diamonds Back in the Spotlight

Sponsored by GCAL by Sarine

The late West Virginia jeweler David Ettinger
CrimeMay 22, 2025
NY Jeweler Sentenced in Shoving Death of Colleague at IJO Show

David Walton will serve three years’ probation after an incident in a hotel bar led to the death of West Virginia jeweler David Ettinger.

Watches of Switzerland store in Mall of America
FinancialsMay 22, 2025
Watches of Switzerland’s Full-Year U.S. Sales Climb 14%

The retailer also provided an update on how the tariffs situation in the U.S. is affecting its business.

Jorge Adeler, Wendy Adeler, Valentina Adeler
IndependentsMay 22, 2025
Adeler Jewelers Celebrates 50 Years

The family-owned jeweler in Great Falls, Virginia, will be celebrating its golden jubilee with a year’s worth of events.

Jose Hess Design Awards 2025 Trophy
Events & AwardsMay 22, 2025
Jose Hess Design Awards Announce Judges

The nonprofit elected five judges who will decide the winners of its design competition.

MJSA 2025-2026 Buyer’s Guide
MajorsMay 22, 2025
MJSA Releases 2025-2026 Buyer’s Guide

This year’s edition includes articles on the favorite tools of notable designers, evaluating when to outsource production, and more.

×

This site uses cookies to give you the best online experience. By continuing to use & browse this site, we assume you agree to our Privacy Policy