Surveys

Report: US Retailers Are Top Targets for Data Breaches

SurveysAug 02, 2018

Report: US Retailers Are Top Targets for Data Breaches

According to the 2018 Thales Data Threat Report, U.S. retailers experienced twice as many IT security breaches than other retailers worldwide last year.

New York—A new report says that retailers in the United States are experiencing the most IT security breaches worldwide.

The retail edition of the 2018 Thales Data Threat Report based its findings on input from 100 senior retail IT security managers in the U.S. and 96 IT security managers from retailers in other countries to establish the state of IT security today.

It found that despite an increase in IT security spending—84 percent of U.S. retailers polled plan on upping their budgets this year, compared to 77 percent last year and 67 percent of international retailers this year—cyber-attackers are by and large staying one step ahead of companies.

Fifty percent of U.S. retailers surveyed said they experienced IT security breaches last year alone, compared to 19 percent in the 2017 report. Only 27 percent of global retailers, meanwhile, said they experienced a breach last year.

RELATED CONTENT: Saks, Lord & Taylor the Latest Hit by Hackers
Seventy-five percent of the respondents in the U.S. said they’ve experienced at least one breach, while 60 percent of global retailers said the same.

The retail industry, which is becoming increasingly digital, is a target for cyber attackers due to its high volume of credit card transactions. In fact, Thales says that overall, it’s the second most breached industry in the United States behind the federal government.

The results of the Thales study on IT security in retail mirror what the Jewelers Security Alliance found in its 2017 crime report. The JSA saw such a large uptick in cybercrime last year that for the first time ever, it broke the losses out separately.

The average dollar loss from cybercrime in the jewelry industry was $1.2 million last year, with JSA President John J. Kennedy calling it a “dangerous and growing crime trend.”

A Bad Investment

Despite the uptick in IT security budgets, the Thales report concluded that retailers are putting their money in places that even they recognize to be ineffective. what they themselves deem the most ineffective places.

Of available tools to battle security breaches, 91 percent of U.S. retailers said analysis and correlation tools are the most effective and 90 percent said data-in-motion— providing security for an e-mail in transit while it’s being sent, for example—is the second most effective weapon.

However, they indicated that their highest spending increases would go to endpoint/mobile defenses (77 percent), even though
they ranked this as the least effective security method. Only 57 percent of retailers plan to increase the budget for data-at rest (stored data) defense, and only 62 percent for data-in-motion defenses, despite these being more effective.
RELATED CONTENT: JSA: Smash-and-Grab Robberies, Cybercrime Up in 2017
“Traditional endpoint and network security are no longer sufficient, particularly for heavy adopters of public cloud resources such as the U.S. retail sector,” the report said, especially with the expanding use of external cloud services like SaaS (software as a service), PaaS (platform as a service) and IaaS (infrastructure as a service).

Where the Money Should Go

 Thales asserts that tools like discovery/classification and encryption or tokenization are key to protecting against IT security breaches today.

Only 26 percent of U.S. retailers polled said they are implementing encryption in the cloud, compared with 30 percent of global retailers.

Fifty-two percent of U.S. respondents cited a lack of perceived need as the top reason for not devoting more resources to tools like encryption and tokenization, while 47 percent also cited impact on business performance and 46 percent were put off by its complexity.

In a past interview with National Jeweler, Kennedy offered a list of cybersecurity recommendations for jewelers specifically, some of which might involve hiring an IT firm.

They include: proper firewalls, up-to-date anti-virus software, the avoidance of “risky” internet sites and the training of staff on the types of mistakes that often let in hackers.

Staff need to be told, or reminded, not to open or click into unknown or suspicious emails, and to look carefully at emails from known parties for misspellings and other anomalies as emails addressed can be spoofed.

Thales said that retailers should “re-prioritize” their IT security toolsets, focusing on ones that offer service-based deployments, platforms and automation to reduce complexity while adding protection.

It also recommended that retailers go beyond national and international compliance measures and employ security tools like encryption and tokenization. Encryption needs to be applied to all platforms, not just desktop and laptop computers.

Specifically, Thales recommends encrypting the cloud, big data, data located within containers and IoT (interconnected devices with IP addresses).

It’s likely that compliance guidelines will one day mandate these practices, the report said, so retailers can benefit from getting a head start on them, hopefully avoiding data breaches in the process.
Ashley Davisis the senior editor, fashion at National Jeweler, covering all things related to design, style and trends.

The Latest

Future Fortune sapphire ring
TechnologyMar 28, 2024
Pinterest’s 2024 Wedding Report Is Out

The report shows that couples are searching for vintage and antique rings, gold jewelry, pearls, and colorful pieces.

David Ettinger
IndependentsMar 28, 2024
David Ettinger of Bechdel Jewelers Dies at 69

He’s remembered as a “font of passion,” leaving behind a legacy of dedication to his craft and community.

Jewelers of America logo
IndependentsMar 28, 2024
JA to Host Series of Learning Workshops

The first one will take place next month during the Jewelers of Louisiana’s and Mississippi Jewelers Association’s conventions.

Jewelers of America Fly In Washington, D.C.
Brought to you by
How Jewelers of America Represents Your Business

For over 30 years, JA has advocated for the industry, fought against harmful legislation and backed measures that help jewelry businesses.

Jaeger-LeCoultre Madison Avenue NYC store
WatchesMar 28, 2024
Peek Inside Jaeger-LeCoultre’s Revamped NYC Flagship

The redesigned boutique features interactive displays and a workshop space for hands-on learning about watchmaking.

Weekly QuizMar 28, 2024
This Week’s Quiz
Test your jewelry news knowledge with this short test.
Take the Quiz
Asian Star’s diamond manufacturing facility in India
SourcingMar 27, 2024
Compliance, Caution, and Concern: The Current Outlook of Indian Diamantaires

There is a willingness to comply with new government-mandated regulations, with an insistence that they should be practical and realistic.

Kira Diam solar plant
Lab-GrownMar 27, 2024
Indian Lab-Grown Diamond Manufacturers Keep Growing

A combination of factors is driving growth in the industry despite the precipitous drop in prices across the board.

BTYB-HoBrothers-updated.png
Brought to you by
The Scalable, Professional, and Effortless Solution for High-Demand Custom Jewelry Retailers

Ho Brothers offers scalable solutions for the future of custom jewelry.

Bharat Ratnam, a Mega Common Facilitation Centre (CFC)
SourcingMar 27, 2024
Reinvigorating SEEPZ, the Epicenter of India’s Studded Jewelry Exports

The zone’s modernization will enhance and increase India’s jewelry manufacturing capabilities while aiding small and mid-sized businesses.

SRK Empire and SRK House
Policies & IssuesMar 27, 2024
SRK Exports’ Journey Toward Net Zero Impact

By the end of this year, SRK’s diamond manufacturing complexes will achieve net zero emissions, one of an impressive array of achievements.

Georgia May Jagger Tommy Hilfiger ad campaign
FinancialsMar 27, 2024
Movado’s Full-Year Sales Sink 11%

The company plans to invest $25 million in marketing initiatives to boost awareness around its namesake and licensed brands.

Bernadette Mack
Policies & IssuesMar 27, 2024
Mercury Free Mining Hires Bernadette Mack

The former WJA executive director is MFM’s new managing director.

April Is Diamonds Do Good Month
Policies & IssuesMar 27, 2024
Diamonds Do Good Announces Its April Initiative

DDG encourages retailers to educate customers on the positive impact of purchasing natural diamonds.

Tiffany & Co. With Love, Since 1837
MajorsMar 26, 2024
Tiffany & Co. Debuts ‘With Love, Since 1837’ Campaign

Highlighting the most iconic Tiffany collections, it’s inspired by the company’s late window designer, Gene Moore.

National Jeweler columnists Duvall O’Steen and Jen Cullen Williams
ColumnistsMar 26, 2024
Creative Connecting: AI Tools and Tips for Social Media

Jen Cullen Williams and Duvall O’Steen explore how jewelers can save time and money by using AI to analyze engagement and create content.

Nordstrom Men’s Store New York City
MajorsMar 26, 2024
Nordstrom May Go Private, Says Report

The retailer previously turned down an $8.4 billion offer in 2018.

Interior of Miami Lakes Jewelers
IndependentsMar 26, 2024
Miami Lakes Jewelers to Close After 37 Years

The Florida store’s owner Miguel Gonzalez is retiring.

 International Gemological Institute
GradingMar 26, 2024
IGI Announces Tech for ID’ing Lab-Grown Colored Diamonds

The lab stresses the importance of accurate identification, as the difference in price is “substantial.”

Kendra Scott lab-grown diamond jewelry
CollectionsMar 25, 2024
Kendra Scott Debuts Lab-Grown Diamond Fashion Jewelry

The brand also plans to expand its retail footprint from 138 to 200 stores over the next three years.

Instappraise logo NAJA logo
Events & AwardsMar 25, 2024
NAJA, Instappraise Offering Scholarships for Aspiring Jewelry Appraisers

One is reserved for a NAJA member, the other for a non-member.

Carie Lehrke and Megan Mattice
MajorsMar 25, 2024
Borsheims Announces New VP of HR, Assistant Manager

Longtime employees Carie Lehrke and Megan Mattice have received promotions.

My Next Question graphic vintage jewelry webinar
Recorded WebinarsMar 22, 2024
Watch: How to Buy and Sell Vintage Jewelry

Three guests joined National Jeweler and Jewelers of America to discuss trending time periods, spotting reproductions, and more.

Chris Clipper and Robert Lepere
MajorsMar 22, 2024
David Yurman Announces New CFO, Chief People Officer

Chris Clipper and Robert Lepere join the company with 50 years of combined experience.

Nakard pyrite earrings
CollectionsMar 22, 2024
Piece of the Week: Nakard’s Pyrite Earrings

The trendy, metallic earrings wink at classic spring colors.

Stock image of police cars with their lights on
CrimeMar 21, 2024
Sparks Fly as Burglars Lose Safe on California Freeway

JSA said a man and woman pulled the safe out of an Oakland jewelry store but couldn’t quite get it into their van.

Grizzly Mining rough emeralds
SourcingMar 21, 2024
Grizzly Sells 4,145-Carat Emerald for Over $1M

The miner’s March auction generated $19 million.

Helen McCluskey
MajorsMar 21, 2024
Signet Jewelers Names New Board Chair

Helen McCluskey will succeed H. Todd Stitzer when he meets his 12-year term limit in June.

×

This site uses cookies to give you the best online experience. By continuing to use & browse this site, we assume you agree to our Privacy Policy