IndependentsApr 01, 2025
Bergman Jewelers in Omaha Closing After 137 YearsThe independent jeweler first opened its doors in 1888.
SurveysAug 02, 2018
Report: US Retailers Are Top Targets for Data Breaches
According to the 2018 Thales Data Threat Report, U.S. retailers experienced twice as many IT security breaches than other retailers worldwide last year.
New York—A new report says that retailers in the United States are experiencing the most IT security breaches worldwide.
The retail edition of the 2018 Thales Data Threat Report based its findings on input from 100 senior retail IT security managers in the U.S. and 96 IT security managers from retailers in other countries to establish the state of IT security today.
It found that despite an increase in IT security spending—84 percent of U.S. retailers polled plan on upping their budgets this year, compared to 77 percent last year and 67 percent of international retailers this year—cyber-attackers are by and large staying one step ahead of companies.
Fifty percent of U.S. retailers surveyed said they experienced IT security breaches last year alone, compared to 19 percent in the 2017 report. Only 27 percent of global retailers, meanwhile, said they experienced a breach last year.
RELATED CONTENT: Saks, Lord & Taylor the Latest Hit by HackersSeventy-five percent of the respondents in the U.S. said they’ve experienced at least one breach, while 60 percent of global retailers said the same.
The retail industry, which is becoming increasingly digital, is a target for cyber attackers due to its high volume of credit card transactions. In fact, Thales says that overall, it’s the second most breached industry in the United States behind the federal government.
The results of the Thales study on IT security in retail mirror what the Jewelers Security Alliance found in its 2017 crime report. The JSA saw such a large uptick in cybercrime last year that for the first time ever, it broke the losses out separately.
The average dollar loss from cybercrime in the jewelry industry was $1.2 million last year, with JSA President John J. Kennedy calling it a “dangerous and growing crime trend.”
A Bad Investment
Despite the uptick in IT security budgets, the Thales report concluded that retailers are putting their money in places that even they recognize to be ineffective. what they themselves deem the most ineffective places.
Of available tools to battle security breaches, 91 percent of U.S. retailers said analysis and correlation tools are the most effective and 90 percent said data-in-motion— providing security for an e-mail in transit while it’s being sent, for example—is the second most effective weapon.
However, they indicated that their highest spending increases would go to endpoint/mobile defenses (77 percent), even though
Editors' Picks
Sponsored by
they ranked this as the least effective security method. Only 57 percent of retailers plan to increase the budget for data-at rest (stored data) defense, and only 62 percent for data-in-motion defenses, despite these being more effective.
Where the Money Should Go
Thales asserts that tools like discovery/classification and encryption or tokenization are key to protecting against IT security breaches today.
Only 26 percent of U.S. retailers polled said they are implementing encryption in the cloud, compared with 30 percent of global retailers.
Fifty-two percent of U.S. respondents cited a lack of perceived need as the top reason for not devoting more resources to tools like encryption and tokenization, while 47 percent also cited impact on business performance and 46 percent were put off by its complexity.
In a past interview with National Jeweler, Kennedy offered a list of cybersecurity recommendations for jewelers specifically, some of which might involve hiring an IT firm.
They include: proper firewalls, up-to-date anti-virus software, the avoidance of “risky” internet sites and the training of staff on the types of mistakes that often let in hackers.
Staff need to be told, or reminded, not to open or click into unknown or suspicious emails, and to look carefully at emails from known parties for misspellings and other anomalies as emails addressed can be spoofed.
Thales said that retailers should “re-prioritize” their IT security toolsets, focusing on ones that offer service-based deployments, platforms and automation to reduce complexity while adding protection.
It also recommended that retailers go beyond national and international compliance measures and employ security tools like encryption and tokenization. Encryption needs to be applied to all platforms, not just desktop and laptop computers.
Specifically, Thales recommends encrypting the cloud, big data, data located within containers and IoT (interconnected devices with IP addresses).
It’s likely that compliance guidelines will one day mandate these practices, the report said, so retailers can benefit from getting a head start on them, hopefully avoiding data breaches in the process.
RELATED CONTENT: JSA: Smash-and-Grab Robberies, Cybercrime Up in 2017“Traditional endpoint and network security are no longer sufficient, particularly for heavy adopters of public cloud resources such as the U.S. retail sector,” the report said, especially with the expanding use of external cloud services like SaaS (software as a service), PaaS (platform as a service) and IaaS (infrastructure as a service).
Where the Money Should Go
Thales asserts that tools like discovery/classification and encryption or tokenization are key to protecting against IT security breaches today.
Only 26 percent of U.S. retailers polled said they are implementing encryption in the cloud, compared with 30 percent of global retailers.
Fifty-two percent of U.S. respondents cited a lack of perceived need as the top reason for not devoting more resources to tools like encryption and tokenization, while 47 percent also cited impact on business performance and 46 percent were put off by its complexity.
In a past interview with National Jeweler, Kennedy offered a list of cybersecurity recommendations for jewelers specifically, some of which might involve hiring an IT firm.
They include: proper firewalls, up-to-date anti-virus software, the avoidance of “risky” internet sites and the training of staff on the types of mistakes that often let in hackers.
Staff need to be told, or reminded, not to open or click into unknown or suspicious emails, and to look carefully at emails from known parties for misspellings and other anomalies as emails addressed can be spoofed.
Thales said that retailers should “re-prioritize” their IT security toolsets, focusing on ones that offer service-based deployments, platforms and automation to reduce complexity while adding protection.
It also recommended that retailers go beyond national and international compliance measures and employ security tools like encryption and tokenization. Encryption needs to be applied to all platforms, not just desktop and laptop computers.
Specifically, Thales recommends encrypting the cloud, big data, data located within containers and IoT (interconnected devices with IP addresses).
It’s likely that compliance guidelines will one day mandate these practices, the report said, so retailers can benefit from getting a head start on them, hopefully avoiding data breaches in the process.
More on Surveys
The Latest
MajorsApr 01, 2025
QVC Group to Cut 900 Jobs in the U.S.The layoffs come amid the TV shopping channel’s efforts to restructure and focus on live shopping through social media.
Events & AwardsApr 01, 2025
U.S. Antique Shows Adds Fall Show in FloridaThe debut event will take place in Miami’s Coconut Grove neighborhood this fall.
Brought to you by
The Heart of the Industry: Giving Bench Jewelers the Recognition They DeserveBench jewelers spend years honing their skills, Jewelers of America’s Certification validates their talents.
Events & AwardsApr 01, 2025
TJS to Host Discussion on Jewelry Industry’s Labor ShortageThe roundtable will take place May 17 ahead of the trade show’s welcome dinner.
Weekly QuizMar 27, 2025
This Week’s QuizTest your jewelry news knowledge by answering these questions.
CollectionsApr 01, 2025
Monica Rich Kosann Says ‘Good Grief’ in Peanuts Jewelry CollectionThe “Peanuts x Monica Rich Kosann” collection features the comic strip’s classic vocabulary across 10 bracelet designs.
Recorded WebinarsMar 31, 2025
Watch: What Do We Mean When We Say ‘Recycled’ Gold?Three industry experts dive into the complexities of the material often marketed as an “ethical” alternative for metal in jewelry.
Brought to you by
Natural Diamonds Should Mean MoreNatural diamonds mean more than lab-grown, but when every cut is ideal, they all look the same. Customers want more—Facets of Fire delivers.
TrendsMar 31, 2025
Amanda’s Style File: Dripping in DiamondsDiamonds are not only one of the most prominent gemstones, but the birthstone for those born in April.
MajorsMar 31, 2025
Lashbrook Expands Into Luxury Golf Gifts With AcquisitionThe Utah-based company known for making wedding bands has acquired Doubloon Golf.
WatchesMar 31, 2025
Bulgari CEO Jean-Christophe Babin Will Also Head LVMH WatchesThe longtime luxury executive led one of LVMH’s watch brands, TAG Heuer, for 12 years before taking over Bulgari in 2013.
CrimeMar 28, 2025
2 Suspects Arrested in $1.7M Smash-and-Grab Robbery of NY Jewelry StoreAuthorities said the robbers fled with jewelry and 70 Rolex watches, later taking pictures of themselves posing with big stacks of cash.
SourcingMar 28, 2025
19th-Century Jade Book Now Available in EnglishLotus Gemology founder Richard W. Hughes has translated Heinrich Fischer’s 1880 book “Nephrit und Jadeit” from its original German.
CollectionsMar 28, 2025
Piece of the Week: Löf’s ‘The Valentine’ RingThe ring's design features contrasting lines influenced by work from architecture-inspired photographer Nikola Olic.
AuctionsMar 27, 2025
300-Year-Old Ring Linked to Witch Trial Judge Goes Unsold at Auction However, two medieval jewels surpassed estimates at Noonans Mayfair’s recent jewelry auction in London.
WatchesMar 27, 2025
Austin Butler Joins Breitling as Brand AmbassadorThe Oscar-nominated actor debuted in the campaign for the new “Top Time B31” collection, which introduced Breitling’s Caliber B31.
SourcingMar 27, 2025
Susan Jacques, Gaetano Cavalieri to Headline 2025 ICA Congress The Congress is scheduled to take place May 19-22 in Brasilia, Brazil.
IndependentsMar 26, 2025
Bailey’s Fine Jewelry Acquires Fellow NC Independent JewelerThe family-owned retailer is the new owner of Morrison Smith Jewelers in Charlotte, North Carolina.
WatchesMar 26, 2025
Bulova Celebrates 150th Anniversary With Art Deco WatchesThe “150 Art Deco” collection features a Miss America timepiece and a pocket watch from the brand’s Archive Series.
MajorsMar 26, 2025
QVC Group Appoints New PresidentAlex Wellen, formerly CEO and president of MotorTrend Group, has taken on the role.
Events & AwardsMar 26, 2025
Jewelers of America Announces New Funding Initiative The Impact Initiative is part of the nonprofit association’s new three-year strategic plan.
AuctionsMar 25, 2025
Christie’s To Auction 35-Carat Sapphire, 13-Carat RubyThe ruby and the sapphire, which Christie’s calls a “once-in-a-generation masterpiece,” are part of the upcoming Hong Kong jewelry auction.
CrimeMar 25, 2025
Tiffany & Co. Earrings Swallowed Following Grab-and-Run Theft RecoveredThe two pairs of earrings, snatched from a Tiffany & Co. store in Orlando, Florida, are valued at a combined $769,500.
ColumnistsMar 25, 2025
The Smart Lab: Using Short-Form Videos to Sell More JewelryThe time to start experimenting with video content is now, writes columnist Emmanuel Raheb.
CollectionsMar 24, 2025
Pomellato’s Latest ‘Nudo’ Collections Revamp its Classic DesignFrom striking high jewelry to miniature fine jewelry, the new chapter continues to highlight gemstones featuring its signature 57-facet cut.
MajorsMar 24, 2025
4 Top Executives to Depart Signet Jewelers Amid TurnaroundThe jewelry giant is reducing its senior leadership by 30 percent as part of its new turnaround strategy.
WatchesMar 24, 2025
Sotheby's Now Offers Watch Repair ServicesThe auction house's partnership with online watch servicing platform WatchCheck makes repairs convenient and accessible, it said.
