TrendsApr 03, 2025
Tallulah Willis Imbues Antique Engagement Ring With MagicThe 4-carat, old mine brilliant-cut diamond engagement ring was co-designed by Willis and New York City-based brand Karina Noel.
SurveysAug 02, 2018
Report: US Retailers Are Top Targets for Data Breaches
According to the 2018 Thales Data Threat Report, U.S. retailers experienced twice as many IT security breaches than other retailers worldwide last year.
New York—A new report says that retailers in the United States are experiencing the most IT security breaches worldwide.
The retail edition of the 2018 Thales Data Threat Report based its findings on input from 100 senior retail IT security managers in the U.S. and 96 IT security managers from retailers in other countries to establish the state of IT security today.
It found that despite an increase in IT security spending—84 percent of U.S. retailers polled plan on upping their budgets this year, compared to 77 percent last year and 67 percent of international retailers this year—cyber-attackers are by and large staying one step ahead of companies.
Fifty percent of U.S. retailers surveyed said they experienced IT security breaches last year alone, compared to 19 percent in the 2017 report. Only 27 percent of global retailers, meanwhile, said they experienced a breach last year.
RELATED CONTENT: Saks, Lord & Taylor the Latest Hit by HackersSeventy-five percent of the respondents in the U.S. said they’ve experienced at least one breach, while 60 percent of global retailers said the same.
The retail industry, which is becoming increasingly digital, is a target for cyber attackers due to its high volume of credit card transactions. In fact, Thales says that overall, it’s the second most breached industry in the United States behind the federal government.
The results of the Thales study on IT security in retail mirror what the Jewelers Security Alliance found in its 2017 crime report. The JSA saw such a large uptick in cybercrime last year that for the first time ever, it broke the losses out separately.
The average dollar loss from cybercrime in the jewelry industry was $1.2 million last year, with JSA President John J. Kennedy calling it a “dangerous and growing crime trend.”
A Bad Investment
Despite the uptick in IT security budgets, the Thales report concluded that retailers are putting their money in places that even they recognize to be ineffective. what they themselves deem the most ineffective places.
Of available tools to battle security breaches, 91 percent of U.S. retailers said analysis and correlation tools are the most effective and 90 percent said data-in-motion— providing security for an e-mail in transit while it’s being sent, for example—is the second most effective weapon.
However, they indicated that their highest spending increases would go to endpoint/mobile defenses (77 percent), even though
Editors' Picks
Sponsored by
they ranked this as the least effective security method. Only 57 percent of retailers plan to increase the budget for data-at rest (stored data) defense, and only 62 percent for data-in-motion defenses, despite these being more effective.
Where the Money Should Go
Thales asserts that tools like discovery/classification and encryption or tokenization are key to protecting against IT security breaches today.
Only 26 percent of U.S. retailers polled said they are implementing encryption in the cloud, compared with 30 percent of global retailers.
Fifty-two percent of U.S. respondents cited a lack of perceived need as the top reason for not devoting more resources to tools like encryption and tokenization, while 47 percent also cited impact on business performance and 46 percent were put off by its complexity.
In a past interview with National Jeweler, Kennedy offered a list of cybersecurity recommendations for jewelers specifically, some of which might involve hiring an IT firm.
They include: proper firewalls, up-to-date anti-virus software, the avoidance of “risky” internet sites and the training of staff on the types of mistakes that often let in hackers.
Staff need to be told, or reminded, not to open or click into unknown or suspicious emails, and to look carefully at emails from known parties for misspellings and other anomalies as emails addressed can be spoofed.
Thales said that retailers should “re-prioritize” their IT security toolsets, focusing on ones that offer service-based deployments, platforms and automation to reduce complexity while adding protection.
It also recommended that retailers go beyond national and international compliance measures and employ security tools like encryption and tokenization. Encryption needs to be applied to all platforms, not just desktop and laptop computers.
Specifically, Thales recommends encrypting the cloud, big data, data located within containers and IoT (interconnected devices with IP addresses).
It’s likely that compliance guidelines will one day mandate these practices, the report said, so retailers can benefit from getting a head start on them, hopefully avoiding data breaches in the process.
RELATED CONTENT: JSA: Smash-and-Grab Robberies, Cybercrime Up in 2017“Traditional endpoint and network security are no longer sufficient, particularly for heavy adopters of public cloud resources such as the U.S. retail sector,” the report said, especially with the expanding use of external cloud services like SaaS (software as a service), PaaS (platform as a service) and IaaS (infrastructure as a service).
Where the Money Should Go
Thales asserts that tools like discovery/classification and encryption or tokenization are key to protecting against IT security breaches today.
Only 26 percent of U.S. retailers polled said they are implementing encryption in the cloud, compared with 30 percent of global retailers.
Fifty-two percent of U.S. respondents cited a lack of perceived need as the top reason for not devoting more resources to tools like encryption and tokenization, while 47 percent also cited impact on business performance and 46 percent were put off by its complexity.
In a past interview with National Jeweler, Kennedy offered a list of cybersecurity recommendations for jewelers specifically, some of which might involve hiring an IT firm.
They include: proper firewalls, up-to-date anti-virus software, the avoidance of “risky” internet sites and the training of staff on the types of mistakes that often let in hackers.
Staff need to be told, or reminded, not to open or click into unknown or suspicious emails, and to look carefully at emails from known parties for misspellings and other anomalies as emails addressed can be spoofed.
Thales said that retailers should “re-prioritize” their IT security toolsets, focusing on ones that offer service-based deployments, platforms and automation to reduce complexity while adding protection.
It also recommended that retailers go beyond national and international compliance measures and employ security tools like encryption and tokenization. Encryption needs to be applied to all platforms, not just desktop and laptop computers.
Specifically, Thales recommends encrypting the cloud, big data, data located within containers and IoT (interconnected devices with IP addresses).
It’s likely that compliance guidelines will one day mandate these practices, the report said, so retailers can benefit from getting a head start on them, hopefully avoiding data breaches in the process.
More on Surveys
The Latest
SourcingApr 03, 2025
Canadian Mine Produces 158-Carat Yellow Diamond Rio Tinto unearthed the diamond at its Diavik mine in Canada’s Northwest Territories.
CollectionsApr 03, 2025
Buccellati to Open Immersive Exhibition in MilanThe multisensory experience, open April 8-13, will feature the brand’s silver creations among dream-like scenes of natural landscapes.
Brought to you by
The Heart of the Industry: Giving Bench Jewelers the Recognition They DeserveBench jewelers spend years honing their skills, Jewelers of America’s Certification validates their talents.
Policies & IssuesApr 03, 2025
Jewelers of America to Hold Webinar on TariffsThe virtual event will take place April 7 at 3 p.m.
Weekly QuizApr 03, 2025
This Week’s QuizTest your jewelry news knowledge by answering these questions.
CollectionsApr 02, 2025
Bea Bongiasca’s ‘Tarallo’ Collection Expansion Is a ZooThe pieces in “Animali Tarallo” portray animals from stingrays to elephants through portraits and interpretations of their patterns.
MajorsApr 02, 2025
Neiman Marcus’ Dallas Flagship Will Remain Open, For NowParent company Saks Global said the iconic location will be open through the holiday season as it decides what to do with the space.
Brought to you by
Natural Diamonds Should Mean MoreNatural diamonds mean more than lab-grown, but when every cut is ideal, they all look the same. Customers want more—Facets of Fire delivers.
SourcingApr 02, 2025
Winston’s Collection of Natural Color Diamonds Now on Display in D.C. Ronald Winston, son of Harry Winston, donated the diamonds to the Smithsonian National Museum of Natural History in Washington, D.C.
Events & AwardsApr 02, 2025
Punchmark to Host Client WorkshopThe educational event will take place in Charlotte, North Carolina, this May.
IndependentsApr 01, 2025
Bergman Jewelers in Omaha Closing After 137 YearsThe independent jeweler first opened its doors in 1888.
MajorsApr 01, 2025
QVC Group to Cut 900 Jobs in the U.S.The layoffs come amid the TV shopping channel’s efforts to restructure and focus on live shopping through social media.
Events & AwardsApr 01, 2025
U.S. Antique Shows Adds Fall Show in FloridaThe debut event will take place in Miami’s Coconut Grove neighborhood this fall.
Events & AwardsApr 01, 2025
TJS to Host Discussion on Jewelry Industry’s Labor ShortageThe roundtable will take place May 17 ahead of the trade show’s welcome dinner.
CollectionsApr 01, 2025
Monica Rich Kosann Says ‘Good Grief’ in Peanuts Jewelry CollectionThe “Peanuts x Monica Rich Kosann” collection features the comic strip’s classic vocabulary across 10 bracelet designs.
Recorded WebinarsMar 31, 2025
Watch: What Do We Mean When We Say ‘Recycled’ Gold?Three industry experts dive into the complexities of the material often marketed as an “ethical” alternative for metal in jewelry.
TrendsMar 31, 2025
Amanda’s Style File: Dripping in DiamondsDiamonds are not only one of the most prominent gemstones, but the birthstone for those born in April.
MajorsMar 31, 2025
Lashbrook Expands Into Luxury Golf Gifts With AcquisitionThe Utah-based company known for making wedding bands has acquired Doubloon Golf.
WatchesMar 31, 2025
Bulgari CEO Jean-Christophe Babin Will Also Head LVMH WatchesThe longtime luxury executive led one of LVMH’s watch brands, TAG Heuer, for 12 years before taking over Bulgari in 2013.
CrimeMar 28, 2025
2 Suspects Arrested in $1.7M Smash-and-Grab Robbery of NY Jewelry StoreAuthorities said the robbers fled with jewelry and 70 Rolex watches, later taking pictures of themselves posing with big stacks of cash.
SourcingMar 28, 2025
19th-Century Jade Book Now Available in EnglishLotus Gemology founder Richard W. Hughes has translated Heinrich Fischer’s 1880 book “Nephrit und Jadeit” from its original German.
CollectionsMar 28, 2025
Piece of the Week: Löf’s ‘The Valentine’ RingThe ring's design features contrasting lines influenced by work from architecture-inspired photographer Nikola Olic.
AuctionsMar 27, 2025
300-Year-Old Ring Linked to Witch Trial Judge Goes Unsold at Auction However, two medieval jewels surpassed estimates at Noonans Mayfair’s recent jewelry auction in London.
WatchesMar 27, 2025
Austin Butler Joins Breitling as Brand AmbassadorThe Oscar-nominated actor debuted in the campaign for the new “Top Time B31” collection, which introduced Breitling’s Caliber B31.
SourcingMar 27, 2025
Susan Jacques, Gaetano Cavalieri to Headline 2025 ICA Congress The Congress is scheduled to take place May 19-22 in Brasilia, Brazil.
IndependentsMar 26, 2025
Bailey’s Fine Jewelry Acquires Fellow NC Independent JewelerThe family-owned retailer is the new owner of Morrison Smith Jewelers in Charlotte, North Carolina.
WatchesMar 26, 2025
Bulova Celebrates 150th Anniversary With Art Deco WatchesThe “150 Art Deco” collection features a Miss America timepiece and a pocket watch from the brand’s Archive Series.
