FinancialsMar 20, 2026
Macy’s Turnaround Plans Shows Promise, Boosted by Bloomingdale’sPlus, why Saks Global’s bankruptcy may have given Bloomingdale’s an edge.
SurveysAug 02, 2018
Report: US Retailers Are Top Targets for Data Breaches
According to the 2018 Thales Data Threat Report, U.S. retailers experienced twice as many IT security breaches than other retailers worldwide last year.
New York—A new report says that retailers in the United States are experiencing the most IT security breaches worldwide.
The retail edition of the 2018 Thales Data Threat Report based its findings on input from 100 senior retail IT security managers in the U.S. and 96 IT security managers from retailers in other countries to establish the state of IT security today.
It found that despite an increase in IT security spending—84 percent of U.S. retailers polled plan on upping their budgets this year, compared to 77 percent last year and 67 percent of international retailers this year—cyber-attackers are by and large staying one step ahead of companies.
Fifty percent of U.S. retailers surveyed said they experienced IT security breaches last year alone, compared to 19 percent in the 2017 report. Only 27 percent of global retailers, meanwhile, said they experienced a breach last year.
RELATED CONTENT: Saks, Lord & Taylor the Latest Hit by HackersSeventy-five percent of the respondents in the U.S. said they’ve experienced at least one breach, while 60 percent of global retailers said the same.
The retail industry, which is becoming increasingly digital, is a target for cyber attackers due to its high volume of credit card transactions. In fact, Thales says that overall, it’s the second most breached industry in the United States behind the federal government.
The results of the Thales study on IT security in retail mirror what the Jewelers Security Alliance found in its 2017 crime report. The JSA saw such a large uptick in cybercrime last year that for the first time ever, it broke the losses out separately.
The average dollar loss from cybercrime in the jewelry industry was $1.2 million last year, with JSA President John J. Kennedy calling it a “dangerous and growing crime trend.”
A Bad Investment
Despite the uptick in IT security budgets, the Thales report concluded that retailers are putting their money in places that even they recognize to be ineffective. what they themselves deem the most ineffective places.
Of available tools to battle security breaches, 91 percent of U.S. retailers said analysis and correlation tools are the most effective and 90 percent said data-in-motion— providing security for an e-mail in transit while it’s being sent, for example—is the second most effective weapon.
However, they indicated that their highest spending increases would go to endpoint/mobile defenses (77 percent), even though
they ranked this as the least effective security method. Only 57 percent of retailers plan to increase the budget for data-at rest (stored data) defense, and only 62 percent for data-in-motion defenses, despite these being more effective.
Where the Money Should Go
Thales asserts that tools like discovery/classification and encryption or tokenization are key to protecting against IT security breaches today.
Only 26 percent of U.S. retailers polled said they are implementing encryption in the cloud, compared with 30 percent of global retailers.
Fifty-two percent of U.S. respondents cited a lack of perceived need as the top reason for not devoting more resources to tools like encryption and tokenization, while 47 percent also cited impact on business performance and 46 percent were put off by its complexity.
In a past interview with National Jeweler, Kennedy offered a list of cybersecurity recommendations for jewelers specifically, some of which might involve hiring an IT firm.
They include: proper firewalls, up-to-date anti-virus software, the avoidance of “risky” internet sites and the training of staff on the types of mistakes that often let in hackers.
Staff need to be told, or reminded, not to open or click into unknown or suspicious emails, and to look carefully at emails from known parties for misspellings and other anomalies as emails addressed can be spoofed.
Thales said that retailers should “re-prioritize” their IT security toolsets, focusing on ones that offer service-based deployments, platforms and automation to reduce complexity while adding protection.
It also recommended that retailers go beyond national and international compliance measures and employ security tools like encryption and tokenization. Encryption needs to be applied to all platforms, not just desktop and laptop computers.
Specifically, Thales recommends encrypting the cloud, big data, data located within containers and IoT (interconnected devices with IP addresses).
It’s likely that compliance guidelines will one day mandate these practices, the report said, so retailers can benefit from getting a head start on them, hopefully avoiding data breaches in the process.
RELATED CONTENT: JSA: Smash-and-Grab Robberies, Cybercrime Up in 2017“Traditional endpoint and network security are no longer sufficient, particularly for heavy adopters of public cloud resources such as the U.S. retail sector,” the report said, especially with the expanding use of external cloud services like SaaS (software as a service), PaaS (platform as a service) and IaaS (infrastructure as a service).
Where the Money Should Go
Thales asserts that tools like discovery/classification and encryption or tokenization are key to protecting against IT security breaches today.
Only 26 percent of U.S. retailers polled said they are implementing encryption in the cloud, compared with 30 percent of global retailers.
Fifty-two percent of U.S. respondents cited a lack of perceived need as the top reason for not devoting more resources to tools like encryption and tokenization, while 47 percent also cited impact on business performance and 46 percent were put off by its complexity.
In a past interview with National Jeweler, Kennedy offered a list of cybersecurity recommendations for jewelers specifically, some of which might involve hiring an IT firm.
They include: proper firewalls, up-to-date anti-virus software, the avoidance of “risky” internet sites and the training of staff on the types of mistakes that often let in hackers.
Staff need to be told, or reminded, not to open or click into unknown or suspicious emails, and to look carefully at emails from known parties for misspellings and other anomalies as emails addressed can be spoofed.
Thales said that retailers should “re-prioritize” their IT security toolsets, focusing on ones that offer service-based deployments, platforms and automation to reduce complexity while adding protection.
It also recommended that retailers go beyond national and international compliance measures and employ security tools like encryption and tokenization. Encryption needs to be applied to all platforms, not just desktop and laptop computers.
Specifically, Thales recommends encrypting the cloud, big data, data located within containers and IoT (interconnected devices with IP addresses).
It’s likely that compliance guidelines will one day mandate these practices, the report said, so retailers can benefit from getting a head start on them, hopefully avoiding data breaches in the process.
More on Surveys
The Latest
AuctionsMar 20, 2026
Sotheby's, De Beers Unveil ‘Jwaneng 28.88’ DiamondThe flawless, Type IIa stone is estimated to achieve up to $2.8 million at the auction house’s high jewelry sale in April.
TrendsMar 20, 2026
‘Frankenstein’ Costume Designer Is Bejeweled In Brooches for Oscars WinCostume designer Kate Hawley wore three archival Tiffany & Co. brooches, our Pieces of the Week, while accepting her first Oscar.
Brought to you by
Protect Your Customers and Your BusinessYou deserve to know what you are selling–to protect your customers as well as your business and your reputation.
FinancialsMar 19, 2026
Signet Jewelers to Close 100 Stores, Shutter James Allen BannerThe jewelry retailer announced changes to its store network and brand portfolio during its fourth-quarter earnings call.
Weekly QuizMar 19, 2026
This Week’s QuizTest your jewelry news knowledge by answering these questions.
AuctionsMar 19, 2026
26-Carat Diamond Tops $1M at AuctionThe historic stone, which sold at Elmwood’s in London, is the largest white diamond to be offered on the U.K. market in more than a decade.
Events & AwardsMar 19, 2026
JCK Rocks To Ride With NellyThree-time Grammy award-winning artist Nelly is set to perform at the annual event at Tao Beach in Las Vegas on May 31.
Brought to you by
Is This You? Every Jeweler Has This Problem; We Have the Solution.Every jeweler faces the same challenge: helping customers protect what they love. Here’s the solution designed for today’s jewelry business.
AuctionsMar 18, 2026
Collection of the ‘Severely Beautiful’ Lady Wardington Fetches $161KThe model and fashion editor’s gold evening bags were the top lots at the London sale, going for more than $25,000 each.
PodcastsMar 18, 2026
Episode 3: An Interview With Jewelry Designer Johnny NelsonFresh off winning the David Yurman Gem Awards Grant, Nelson discusses the ring that launched his career and his plans for the future.
SourcingMar 18, 2026
Lucara Recovers Nearly 37-Carat Blue DiamondThe “stunning” Type IIb stone was found via x-ray technology at its Karowe mine in Botswana.
MajorsMar 18, 2026
Stuller Releases New Edition of Jewelry Education Book“The Basics of Jewelry” has been updated to include modern topics and visuals.
Events & AwardsMar 17, 2026
The Best Moments From the 2026 Gem Awards Held just before the Oscars, the jewelry industry’s big awards show had its share of standout jewelry, gowns, and acceptance speeches.
SourcingMar 17, 2026
Cruzeiro Mine Debuts ‘Winter Tourmaline’The Brazilian mine’s new collection features cabochons in soft, muted shades like silver and lilac.
TrendsMar 17, 2026
Natalie Portman Is Tiffany & Co.’s New AmbassadorThe Academy Award-winning actress stars in Tiffany & Co.’s latest commercial, which debuted Sunday night during the Oscars.
MajorsMar 17, 2026
Kering Establishes Jewelry Division, Appoints CEOThe organizational change follows Kering’s promise of a transformation after declining sales in 2025.
EditorsMar 16, 2026
2026 Oscars Jewelry: One Necklace After AnotherNatalie Francisco rounds up the top Oscars jewels, including Rose Byrne’s Taffin necklace with a more than 20-carat yellow-brown diamond.
WatchesMar 16, 2026
TAG Heuer Has a New CEOBéatrice Goasglas has been with TAG Heuer since 2018. She is the first woman to head the 166-year-old, LVMH-owned watch brand.
IndependentsMar 16, 2026
Ben Bridge Debuts New Honolulu BoutiqueThe store features the first in-store build for the jeweler’s in-house “Bella Ponte” bridal brand.
AuctionsMar 16, 2026
Bonhams Paris To Offer Antique, Signed Jewels The live fine jewelry auction will take place later this week, showcasing antique pieces, rare gemstones, and signed jewels.
CollectionsMar 13, 2026
A Trio of Jewels from the 3 Gem Award Nominees for Jewelry DesignOur Pieces of the Week honor the 2026 nominees for the Gem Award for Jewelry Design, Silvia Furmanovich, Cece Fein-Hughes, and Catherine Sarr.
WatchesMar 13, 2026
Citizen, Vera Wang to Launch Watch CollectionThe 24-piece watch collection is set to debut in spring 2027.
SourcingMar 13, 2026
Andrea Pooler Joins Third-Generation Diamond Company as COO Pooler, who has more than 25 years’ experience in jewelry, is now chief operating officer of Modani Jewels, Soham Diamonds, and SNJ Creations.
MajorsMar 13, 2026
24 Karat Club of New York’s Banquet to Return to Waldorf AstoriaThe reopening of the Waldorf Astoria means a homecoming for the industry group’s annual event, which will take place Saturday.
CollectionsMar 12, 2026
Jessica McCormack Sends Gold, Gemstones Into ‘Orbit’McCormack looked to the 19th century’s “golden age” of astronomy when designing her new celestial-themed collection.
Events & AwardsMar 12, 2026
Johnny Nelson Wins David Yurman Gem Awards GrantNelson will be honored as the inaugural grant winner at the Gem Awards gala on Friday.
TechnologyMar 12, 2026
Caratwise Launches, Names Former Signet Exec CEO The new smart design software allows jewelers to configure, price, and confirm a custom engagement ring in real time for in-store customers.
