FinancialsNov 26, 2025
Movado CEO Talks Tariffs, Growing Interest in Accessible Luxury WatchesDuring its Q3 call, CEO Efraim Grinberg discussed the deal to lower tariffs on Swiss-made watches, watch market trends, and more.
SurveysAug 02, 2018
Report: US Retailers Are Top Targets for Data Breaches
According to the 2018 Thales Data Threat Report, U.S. retailers experienced twice as many IT security breaches than other retailers worldwide last year.
New York—A new report says that retailers in the United States are experiencing the most IT security breaches worldwide.
The retail edition of the 2018 Thales Data Threat Report based its findings on input from 100 senior retail IT security managers in the U.S. and 96 IT security managers from retailers in other countries to establish the state of IT security today.
It found that despite an increase in IT security spending—84 percent of U.S. retailers polled plan on upping their budgets this year, compared to 77 percent last year and 67 percent of international retailers this year—cyber-attackers are by and large staying one step ahead of companies.
Fifty percent of U.S. retailers surveyed said they experienced IT security breaches last year alone, compared to 19 percent in the 2017 report. Only 27 percent of global retailers, meanwhile, said they experienced a breach last year.
RELATED CONTENT: Saks, Lord & Taylor the Latest Hit by HackersSeventy-five percent of the respondents in the U.S. said they’ve experienced at least one breach, while 60 percent of global retailers said the same.
The retail industry, which is becoming increasingly digital, is a target for cyber attackers due to its high volume of credit card transactions. In fact, Thales says that overall, it’s the second most breached industry in the United States behind the federal government.
The results of the Thales study on IT security in retail mirror what the Jewelers Security Alliance found in its 2017 crime report. The JSA saw such a large uptick in cybercrime last year that for the first time ever, it broke the losses out separately.
The average dollar loss from cybercrime in the jewelry industry was $1.2 million last year, with JSA President John J. Kennedy calling it a “dangerous and growing crime trend.”
A Bad Investment
Despite the uptick in IT security budgets, the Thales report concluded that retailers are putting their money in places that even they recognize to be ineffective. what they themselves deem the most ineffective places.
Of available tools to battle security breaches, 91 percent of U.S. retailers said analysis and correlation tools are the most effective and 90 percent said data-in-motion— providing security for an e-mail in transit while it’s being sent, for example—is the second most effective weapon.
However, they indicated that their highest spending increases would go to endpoint/mobile defenses (77 percent), even though
they ranked this as the least effective security method. Only 57 percent of retailers plan to increase the budget for data-at rest (stored data) defense, and only 62 percent for data-in-motion defenses, despite these being more effective.
Where the Money Should Go
Thales asserts that tools like discovery/classification and encryption or tokenization are key to protecting against IT security breaches today.
Only 26 percent of U.S. retailers polled said they are implementing encryption in the cloud, compared with 30 percent of global retailers.
Fifty-two percent of U.S. respondents cited a lack of perceived need as the top reason for not devoting more resources to tools like encryption and tokenization, while 47 percent also cited impact on business performance and 46 percent were put off by its complexity.
In a past interview with National Jeweler, Kennedy offered a list of cybersecurity recommendations for jewelers specifically, some of which might involve hiring an IT firm.
They include: proper firewalls, up-to-date anti-virus software, the avoidance of “risky” internet sites and the training of staff on the types of mistakes that often let in hackers.
Staff need to be told, or reminded, not to open or click into unknown or suspicious emails, and to look carefully at emails from known parties for misspellings and other anomalies as emails addressed can be spoofed.
Thales said that retailers should “re-prioritize” their IT security toolsets, focusing on ones that offer service-based deployments, platforms and automation to reduce complexity while adding protection.
It also recommended that retailers go beyond national and international compliance measures and employ security tools like encryption and tokenization. Encryption needs to be applied to all platforms, not just desktop and laptop computers.
Specifically, Thales recommends encrypting the cloud, big data, data located within containers and IoT (interconnected devices with IP addresses).
It’s likely that compliance guidelines will one day mandate these practices, the report said, so retailers can benefit from getting a head start on them, hopefully avoiding data breaches in the process.
RELATED CONTENT: JSA: Smash-and-Grab Robberies, Cybercrime Up in 2017“Traditional endpoint and network security are no longer sufficient, particularly for heavy adopters of public cloud resources such as the U.S. retail sector,” the report said, especially with the expanding use of external cloud services like SaaS (software as a service), PaaS (platform as a service) and IaaS (infrastructure as a service).
Where the Money Should Go
Thales asserts that tools like discovery/classification and encryption or tokenization are key to protecting against IT security breaches today.
Only 26 percent of U.S. retailers polled said they are implementing encryption in the cloud, compared with 30 percent of global retailers.
Fifty-two percent of U.S. respondents cited a lack of perceived need as the top reason for not devoting more resources to tools like encryption and tokenization, while 47 percent also cited impact on business performance and 46 percent were put off by its complexity.
In a past interview with National Jeweler, Kennedy offered a list of cybersecurity recommendations for jewelers specifically, some of which might involve hiring an IT firm.
They include: proper firewalls, up-to-date anti-virus software, the avoidance of “risky” internet sites and the training of staff on the types of mistakes that often let in hackers.
Staff need to be told, or reminded, not to open or click into unknown or suspicious emails, and to look carefully at emails from known parties for misspellings and other anomalies as emails addressed can be spoofed.
Thales said that retailers should “re-prioritize” their IT security toolsets, focusing on ones that offer service-based deployments, platforms and automation to reduce complexity while adding protection.
It also recommended that retailers go beyond national and international compliance measures and employ security tools like encryption and tokenization. Encryption needs to be applied to all platforms, not just desktop and laptop computers.
Specifically, Thales recommends encrypting the cloud, big data, data located within containers and IoT (interconnected devices with IP addresses).
It’s likely that compliance guidelines will one day mandate these practices, the report said, so retailers can benefit from getting a head start on them, hopefully avoiding data breaches in the process.
More on Surveys
The Latest
TrendsNov 26, 2025
Piece of the Week: Rosior’s Pumpkin RingRosior’s high jewelry cocktail ring with orange sapphires and green diamonds is the perfect Thanksgiving accessory.
IndependentsNov 26, 2025
Greenwich St. Jewelers Launches Colorful Holiday CampaignThe “Embrace Your True Colors” campaign features jewels with a vibrant color palette and poetry by Grammy-nominated artist Aja Monet.
Brought to you by
Impacting Tomorrow TodayHow Jewelers of America’s 20 Under 40 are leading to ensure a brighter future for the jewelry industry.
MajorsNov 26, 2025
Serafino Consoli Names New VP of Sales, Brand Development for the AmericasLuxury veteran Alejandro Cuellar has stepped into the role at the Italian fine jewelry brand.
Weekly QuizNov 20, 2025
This Week’s QuizTest your jewelry news knowledge by answering these questions.
Events & AwardsNov 26, 2025
Grandview Klein Presents 4 Scholarships in NamibiaThe company gave awards to four students at the Namibia University of Science & Technology, including one who is a Grandview Klein employee.
IndependentsNov 25, 2025
Pearl Stringer Margaret Hoisik DiesShe is remembered as an artist who loved her craft and was devoted to her faith, her friends, and her family.
Brought to you by
Roseco Releases New Full-Line CatalogRoseco’s 704-page catalog showcases new lab-grown diamonds, findings, tools & more—available in print or interactive digital editions.
SourcingNov 25, 2025
Finestar Opens Diamond Manufacturing Facility in JohannesburgIt joins the company’s other manufacturing facilities globally, including in India, Botswana, and Namibia.
TrendsNov 25, 2025
Amanda’s Style File: Polka DotsThe polka dot pattern transcends time and has re-emerged as a trend in jewelry through round-shaped gemstones.
CrimeNov 25, 2025
Former Arizona AG Official Charged With Trafficking Stolen JewelryVanessa Hickman, 49, allegedly sold a diamond bracelet that was mistakenly sent to her home.
Events & AwardsNov 25, 2025
GIA Awards Susan Jacques With Its Highest HonorGIA’s former president and CEO was presented with the Richard T. Liddicoat Award for Distinguished Achievement.
Recorded WebinarsNov 24, 2025
Watch: Top Tips for Social Media EtiquetteSocial media experts spoke about protecting brand reputation through behaving mindfully online.
WatchesNov 24, 2025
Breitling Reveals Plans for Gallet, Universal GenèveIn 2026, the three will come together as “House of Brands,” with Gallet sold in Breitling stores and Universal Genève sold separately.
CollectionsNov 24, 2025
Muse Debuts a Wicked 'Have a Heart x Cynthia Erivo' SequelThe second drop, which includes more Elphaba-inspired pieces from additional designers, will continue to benefit nonprofit Dreams of Hope.
IndependentsNov 24, 2025
J.R. Dunn Jewelers Names New PresidentSecond-generation jeweler Sean Dunn has taken on the role.
MajorsNov 21, 2025
Natural Diamond Council Names New CEOAmber Pepper’s main focus will be on digital innovation and engaging younger consumers.
SourcingNov 21, 2025
De Beers’ Branded, Traceable Diamonds Roll Out to 19 Retailers Called “Origin by De Beers Group,” the loose, polished diamonds are being sold in a total of 30 stores in the United States and Canada.
CollectionsNov 21, 2025
Piece of the Week: Melissa Kaye’s ‘Rocky Infinity’ NecklaceThe lariat necklace features a 4.88-carat oval-cut Zambian emerald in 18-karat yellow gold.
AuctionsNov 20, 2025
Vanderbilt Jewels Shine at Phillips Sale, Pink Diamond WithdrawnA 43-carat sapphire brooch from the Vanderbilt collection was the top lot of the Geneva sale.
CollectionsNov 20, 2025
Rebecca Rau Jewels Debuts With ‘Then & Now’ CollectionRau is a fourth-generation art and antique dealer from M.S. Rau gallery whose first jewelry collection merges artifacts with modern design.
Policies & IssuesNov 20, 2025
RJC Names New Executive DirectorFormer De Beers sustainability leader Purvi Shah will take over the role in February 2026.
WatchesNov 20, 2025
LVMH Takes Minority Stake in Citizen Group-Owned Movement Maker La Joux-Perret is based in La Chaux-de-Fonds, Switzerland, and makes solar quartz as well as mechanical watch movements.
GradingNov 20, 2025
Julia Griffith Joins SSEF as Head of EducationShe previously taught at Gem-A and is the founder of The Gem Academy.
CollectionsNov 19, 2025
Larkspur & Hawk Celebrates 25 Years With Helena Bonham Carter CampaignThe British actress and her daughter modeled pieces from the brand’s new “Palette” capsule for its “Once Upon a Time” holiday campaign.
TechnologyNov 19, 2025
Google Has a New Form for Reporting ‘Review Bombing’ Attacks Plus, the tech giant shares the steps retailers should take if they believe they’re a victim of a review extortion scam.
IndependentsNov 19, 2025
Houston Jeweler Keith Shaftel Retires, Next Generation Steps In Danny and Gaby Shaftel are now Shaftel Diamonds’ CEO and chief operating officer, respectively.
