EditorsJun 24, 2025
The Best New Jewelry from Couture 2025, Part 2Associate Editor Natalie Francisco shares 20 additional pieces that stood out to her at the Couture show.
SurveysAug 02, 2018
Report: US Retailers Are Top Targets for Data Breaches
According to the 2018 Thales Data Threat Report, U.S. retailers experienced twice as many IT security breaches than other retailers worldwide last year.
New York—A new report says that retailers in the United States are experiencing the most IT security breaches worldwide.
The retail edition of the 2018 Thales Data Threat Report based its findings on input from 100 senior retail IT security managers in the U.S. and 96 IT security managers from retailers in other countries to establish the state of IT security today.
It found that despite an increase in IT security spending—84 percent of U.S. retailers polled plan on upping their budgets this year, compared to 77 percent last year and 67 percent of international retailers this year—cyber-attackers are by and large staying one step ahead of companies.
Fifty percent of U.S. retailers surveyed said they experienced IT security breaches last year alone, compared to 19 percent in the 2017 report. Only 27 percent of global retailers, meanwhile, said they experienced a breach last year.
RELATED CONTENT: Saks, Lord & Taylor the Latest Hit by HackersSeventy-five percent of the respondents in the U.S. said they’ve experienced at least one breach, while 60 percent of global retailers said the same.
The retail industry, which is becoming increasingly digital, is a target for cyber attackers due to its high volume of credit card transactions. In fact, Thales says that overall, it’s the second most breached industry in the United States behind the federal government.
The results of the Thales study on IT security in retail mirror what the Jewelers Security Alliance found in its 2017 crime report. The JSA saw such a large uptick in cybercrime last year that for the first time ever, it broke the losses out separately.
The average dollar loss from cybercrime in the jewelry industry was $1.2 million last year, with JSA President John J. Kennedy calling it a “dangerous and growing crime trend.”
A Bad Investment
Despite the uptick in IT security budgets, the Thales report concluded that retailers are putting their money in places that even they recognize to be ineffective. what they themselves deem the most ineffective places.
Of available tools to battle security breaches, 91 percent of U.S. retailers said analysis and correlation tools are the most effective and 90 percent said data-in-motion— providing security for an e-mail in transit while it’s being sent, for example—is the second most effective weapon.
However, they indicated that their highest spending increases would go to endpoint/mobile defenses (77 percent), even though
they ranked this as the least effective security method. Only 57 percent of retailers plan to increase the budget for data-at rest (stored data) defense, and only 62 percent for data-in-motion defenses, despite these being more effective.
Where the Money Should Go
Thales asserts that tools like discovery/classification and encryption or tokenization are key to protecting against IT security breaches today.
Only 26 percent of U.S. retailers polled said they are implementing encryption in the cloud, compared with 30 percent of global retailers.
Fifty-two percent of U.S. respondents cited a lack of perceived need as the top reason for not devoting more resources to tools like encryption and tokenization, while 47 percent also cited impact on business performance and 46 percent were put off by its complexity.
In a past interview with National Jeweler, Kennedy offered a list of cybersecurity recommendations for jewelers specifically, some of which might involve hiring an IT firm.
They include: proper firewalls, up-to-date anti-virus software, the avoidance of “risky” internet sites and the training of staff on the types of mistakes that often let in hackers.
Staff need to be told, or reminded, not to open or click into unknown or suspicious emails, and to look carefully at emails from known parties for misspellings and other anomalies as emails addressed can be spoofed.
Thales said that retailers should “re-prioritize” their IT security toolsets, focusing on ones that offer service-based deployments, platforms and automation to reduce complexity while adding protection.
It also recommended that retailers go beyond national and international compliance measures and employ security tools like encryption and tokenization. Encryption needs to be applied to all platforms, not just desktop and laptop computers.
Specifically, Thales recommends encrypting the cloud, big data, data located within containers and IoT (interconnected devices with IP addresses).
It’s likely that compliance guidelines will one day mandate these practices, the report said, so retailers can benefit from getting a head start on them, hopefully avoiding data breaches in the process.
RELATED CONTENT: JSA: Smash-and-Grab Robberies, Cybercrime Up in 2017“Traditional endpoint and network security are no longer sufficient, particularly for heavy adopters of public cloud resources such as the U.S. retail sector,” the report said, especially with the expanding use of external cloud services like SaaS (software as a service), PaaS (platform as a service) and IaaS (infrastructure as a service).
Where the Money Should Go
Thales asserts that tools like discovery/classification and encryption or tokenization are key to protecting against IT security breaches today.
Only 26 percent of U.S. retailers polled said they are implementing encryption in the cloud, compared with 30 percent of global retailers.
Fifty-two percent of U.S. respondents cited a lack of perceived need as the top reason for not devoting more resources to tools like encryption and tokenization, while 47 percent also cited impact on business performance and 46 percent were put off by its complexity.
In a past interview with National Jeweler, Kennedy offered a list of cybersecurity recommendations for jewelers specifically, some of which might involve hiring an IT firm.
They include: proper firewalls, up-to-date anti-virus software, the avoidance of “risky” internet sites and the training of staff on the types of mistakes that often let in hackers.
Staff need to be told, or reminded, not to open or click into unknown or suspicious emails, and to look carefully at emails from known parties for misspellings and other anomalies as emails addressed can be spoofed.
Thales said that retailers should “re-prioritize” their IT security toolsets, focusing on ones that offer service-based deployments, platforms and automation to reduce complexity while adding protection.
It also recommended that retailers go beyond national and international compliance measures and employ security tools like encryption and tokenization. Encryption needs to be applied to all platforms, not just desktop and laptop computers.
Specifically, Thales recommends encrypting the cloud, big data, data located within containers and IoT (interconnected devices with IP addresses).
It’s likely that compliance guidelines will one day mandate these practices, the report said, so retailers can benefit from getting a head start on them, hopefully avoiding data breaches in the process.
More on Surveys
The Latest
IndependentsJun 24, 2025
Colorado Bench Jeweler Celebrates 50 Years With Local RetailerLori Tucker started at Williams Jewelers when she was 18 years old.
WatchesJun 24, 2025
Citizen’s New ‘Fantastic Four’ Watch Is Literally Super The “Marvel | Citizen Zenshin” watch is crafted in Super Titanium and has subtle nods to all four “Fantastic Four” superheroes on the dial.
Brought to you by
Investing in the Next Generation of Bench JewelersThe Seymour & Evelyn Holtzman Bench Scholarship from Jewelers of America returns for a second year.
MajorsJun 24, 2025
Tacori, QVC to Launch Exclusive Lab-Grown Diamond Jewelry CollectionThe “XO Tacori” collection was designed to blend luxury and accessible pricing.
Weekly QuizJun 20, 2025
This Week’s QuizTest your jewelry news knowledge by answering these questions.
GradingJun 23, 2025
GIA Names New President and CEO Pritesh Patel, the lab’s chief operating officer, will take over as president and CEO of GIA.
Recorded WebinarsJun 23, 2025
Watch: Top Trends at Couture, JCK Las Vegas 2025National Jeweler and Jewelers of America discuss the standout jewelry trends and biggest news to emerge from the shows this year.
Brought to you by
Jewelers of America is Headed to Las Vegas for JCK 2025The countdown is on for the JCK Las Vegas Show and JA is pulling out all the stops.
SourcingJun 23, 2025
Diamond Producers, Organizations to Kick in Money to Promote Natural DiamondsSignatories to the “Luanda Accord” committed to allocating 1 percent of annual diamond revenue to the Natural Diamond Council.
Events & AwardsJun 23, 2025
Jose Hess Design Awards Celebrate 6 Jewelry DesignersThe winning designs captured the “Radiance” theme.
Events & AwardsJun 23, 2025
Gem Awards Now Accepting Nominations for 2026Nominations in the categories of Jewelry Design, Media Excellence, and Retail Innovation will be accepted through July 30.
TrendsJun 20, 2025
Dua Lipa Stays On-Trend With Chunky Engagement RingThe singer’s ring ticks off many bridal trends, with a thick band, half-bezel setting, and solitaire diamond.
TrendsJun 20, 2025
Piece of the Week: Yvonne Léon’s ‘Python Gold’ BraceletThe bracelet references vintage high jewelry and snake symbolism as a playful piece where a python’s head becomes a working belt buckle.
CrimeJun 18, 2025
7 Men Indicted in $100M Brinks Jewelry HeistThe heist happened in Lebec, California, in 2022 when a Brinks truck was transporting goods from one show in California to another.
AuctionsJun 18, 2025
Historic ‘Marie-Thérèse Pink’ Diamond Fetches $14M at Christie’sThe 10-carat fancy purple-pink diamond with potential links to Marie Antoinette headlined the white-glove jewelry auction this week.
EditorsJun 18, 2025
Q&A: Caryl Capeci Dives Into Cruise Jewelry ShoppingThe Starboard Cruises SVP discusses who is shopping for jewelry on ships, how much they’re spending, and why brands should get on board.
AuctionsJun 18, 2025
16th-Century ‘Gresham Grasshopper’ Ring Sells for $56KThe historic signet ring exceeded its estimate at Noonans Mayfair’s jewelry auction this week.
CollectionsJun 18, 2025
Kirk Kara Celebrates 135 Years With New JewelsTo mark the milestone, the brand is introducing new non-bridal fine jewelry designs for the first time in two decades.
SourcingJun 18, 2025
Gemfields Sells 36-Carat Rough RubyThe gemstone is the third most valuable ruby to come out of the Montepuez mine, Gemfields said.
TechnologyJun 18, 2025
Alex Brown Named President of Smithee GroupFounder and longtime CEO Ben Smithee will stay with the agency, transitioning into the role of founding partner and strategic advisor.
EditorsJun 17, 2025
The Best New Jewelry from Couture 2025, Part 1Associate Editor Natalie Francisco shares 20 of her favorite pieces from the jewelry collections that debuted at Couture.
ColumnistsJun 17, 2025
Peter Smith: Is Your Comp Plan a Hiring Hindrance?If you want to attract good salespeople and generate a stream of “sleeping money” for your jewelry store, then you are going to have to pay.
AuctionsJun 17, 2025
Colored Gemstones, Signed Jewels Shine in Sotheby’s High Jewelry SaleThe top lot was a colorless Graff diamond, followed by a Burmese ruby necklace by Marcus & Co.
MajorsJun 17, 2025
Amanda Gizzi Gets a Promotion at JAGizzi, who has been in the industry since 2001, is now Jewelers of America’s senior vice president of corporate affairs.
MajorsJun 17, 2025
Kering Names Automotive Exec as Its New CEOLuca de Meo, a 30-year veteran of the auto industry, will succeed longtime CEO François-Henri Pinault.
EditorsJun 16, 2025
Q&A: Bogolo Joy Kenewendo on Mining, Tariffs, and the Energy of Las VegasFollowing visits to Vegas and New York, Botswana’s minerals minister sat down with Michelle Graff to discuss the state of the diamond market.
IndependentsJun 16, 2025
Greenwich St. Jewelers Launches Commitment Campaign Celebrating LGBTQ+ CouplesThe “Your Love Has the Perfect Ring” campaign showcases the strength of love and need for inclusivity and representation, the jeweler said.
