EditorsNov 22, 2024
Out & About: Inside the CD Peacock MansionStep inside the nearly 21,000-square-foot suburban Chicago jewelry store with Editor-in-Chief Michelle Graff.
CrimeDec 09, 2020
In the Wake of the Cyberattack on Stuller, 5 Tips on Cybersecurity
From password security to tracking-number safety, here are five cybersecurity tips to keep in mind.
The Jewelers’ Security Alliance shared tips on how to safely connect with customers online.
New York—Stuller was hit by a cyberattack over Thanksgiving weekend that delayed shipments, shut down the phone lines, and created other operational issues amid the holiday rush.
It took a few days for the massive manufacturer and supplier to get same-day shipping services on in-stock items and the phone lines back up and running.
While Stuller said there was no indication that sensitive business information was compromised—noting that customer credit cards on file are tokenized, encrypted, and not housed at Stuller—the stressful disruption came at the most critical time of the year for the supplier, underscoring the need for businesses today to invest in cybersecurity.
Stuller did not provide additional details on the specifics of the cyberattack.
In a COVID-19 world, and even before then, the ability to connect with customers online is crucial, whether one is running a consumer-facing retail store or a business-to-business operation.
Here are five expert tips on how to navigate the online world safely.
Ensure employees are adequately protected as they work from home.
Law enforcement officials have seen an uptick in fraud and hacking now that more people are working from home on computers or smartphones less secure than those in their office, the Jewelers’ Security Alliance said in a recent memo.
Be sure all employees’ devices have updated protections in place, including firewall, malware, and spam protection.
Stop using the same password for everything.
JSA advises having “strong, unique” passwords.
When the password for everything is the same, it may be easy to remember, but it’s also easy for hackers to gain access to several accounts in one swoop.
Users may also want to set up two-factor or multi-factor authentication.
“If a cybercriminal were to gain access to your log-in credentials, they wouldn’t be able to compromise your account if they didn’t have access to a passcode that would be sent to your phone,” explained Ryan Ruddock, senior research assistant at JSA, during an October webinar on online scams.
If you’re unsure about an email, just don’t open it.
Be wary of email phishing scams, which are attempts to trick users into giving criminals access to personal information.
“The intention behind phishing is to acquire personally identifiable information. So that’s going to include credit card information, social security numbers, account log-in credentials, and, in some cases, intellectual property,” said Ruddock.
It’s the most common type of cybercrime, said Ruddock, noting that it doesn’t target specific individuals.
Criminals will send a mass email in the
hopes that some percentage will respond.
Misspellings and poor grammar are red flags to look for in phishing emails, he said, but also be wary of any email sent with a sense of urgency, pressuring users to act now, think later.
If an email doesn’t look trustworthy, don’t open it or click on any links. Delete it.
If a link in what is believed to be a phishing email is clicked, Ruddock recommended disconnecting from the WiFi, which could prevent malware from being installed on your computer, running an anti-virus scan, and changing passwords.
Also, be on the lookout for email spoofing, which involves an email sent from an address that’s almost, but not quite, identical to a genuine email address for a contact.
An email might look like it’s coming from longtime vendor, such as JohnSmith@jewelry.com, but upon closer inspection, it may actually read JohnSmith@jewellry.com.
If anything about the email seems off, it’s best to contact the vendor or customer by phone and be sure the request is genuine, JSA said.
Be careful with tracking numbers.
For any questions about a transaction, it’s best to reach out to the customer by phone via the number given at the time of purchase.
“You do not want to use the number given to you by the caller,” advised Ruddock.
JSA does not advise giving out the tracking number on a shipment. If a tracking number of a package is given to someone other than the customer, it may be possible for that person to redirect the merchandise.
JSA has also seen cases where a caller, pretending to be from a retail store, contacts a supplier and requests that a high-end item be sent to the store. The caller later diverts the shipment to a different address.
Set a limit on the number of times an address can be changed on a shipment, said Ruddock, and be clear with the shipper about how change of address requests should be handled.
Some companies, he said, have specified to their shipping company that if there are any attempts to change the address, the package should instead be returned to the company.
Make sure employees know the company’s cybersecurity policy.
Every company should have a written cybersecurity policy that is read and signed by employees, said JSA.
Be sure to regularly review the cyber-protocols with employees so everyone is on the same page.
Select cyber security firms also offer tests that allow employers to determine their employees’ ability to avoid phishing attacks and other scams.
Provide additional training to those employees who need it, advised Ruddock.
For more information about cybersecurity, visit the JSA website.
Misspellings and poor grammar are red flags to look for in phishing emails, he said, but also be wary of any email sent with a sense of urgency, pressuring users to act now, think later.
If an email doesn’t look trustworthy, don’t open it or click on any links. Delete it.
If a link in what is believed to be a phishing email is clicked, Ruddock recommended disconnecting from the WiFi, which could prevent malware from being installed on your computer, running an anti-virus scan, and changing passwords.
Also, be on the lookout for email spoofing, which involves an email sent from an address that’s almost, but not quite, identical to a genuine email address for a contact.
An email might look like it’s coming from longtime vendor, such as JohnSmith@jewelry.com, but upon closer inspection, it may actually read JohnSmith@jewellry.com.
If anything about the email seems off, it’s best to contact the vendor or customer by phone and be sure the request is genuine, JSA said.
Be careful with tracking numbers.
For any questions about a transaction, it’s best to reach out to the customer by phone via the number given at the time of purchase.
“You do not want to use the number given to you by the caller,” advised Ruddock.
JSA does not advise giving out the tracking number on a shipment. If a tracking number of a package is given to someone other than the customer, it may be possible for that person to redirect the merchandise.
JSA has also seen cases where a caller, pretending to be from a retail store, contacts a supplier and requests that a high-end item be sent to the store. The caller later diverts the shipment to a different address.
Set a limit on the number of times an address can be changed on a shipment, said Ruddock, and be clear with the shipper about how change of address requests should be handled.
Some companies, he said, have specified to their shipping company that if there are any attempts to change the address, the package should instead be returned to the company.
Make sure employees know the company’s cybersecurity policy.
Every company should have a written cybersecurity policy that is read and signed by employees, said JSA.
Be sure to regularly review the cyber-protocols with employees so everyone is on the same page.
Select cyber security firms also offer tests that allow employers to determine their employees’ ability to avoid phishing attacks and other scams.
Provide additional training to those employees who need it, advised Ruddock.
For more information about cybersecurity, visit the JSA website.
More on Crime
The Latest
CollectionsNov 22, 2024
Piece of the Week: Xander Jane’s ‘Spiked’ Pearl StudsThese punk-inspired earrings from the new Canadian brand’s debut collection reveal the alter ego of the classic pearl.
SourcingNov 22, 2024
Facets of Fire Expands to Include Pear, Marquise DiamondsThe company brings its nanotechnology to two new fancy cuts for diamonds that feature its signature color and brilliance.
Brought to you by
Navigating Cybersecurity: Essential Guidance for JewelersFrom protecting customer data to safeguarding inventory records, it's crucial to learn how to tackle cybersecurity challenges.
Supplier BulletinNov 21, 2024
Tasha R Releases 2025 Labbelle Lab Diamond Jewelry CatalogSponsored by Tasha R
Weekly QuizNov 21, 2024
This Week’s QuizTest your jewelry news knowledge by answering these questions.
AuctionsNov 21, 2024
Gold Watch Gifted to Titanic Rescue Ship Captain Sells for $2MThree Titanic survivors presented him with the personalized Tiffany & Co. timepiece about a year after the tragedy.
MajorsNov 21, 2024
Harris Jewelry Ordered to Reopen Claims Portal for Refund RequestsA federal court found that the jewelry store chain violated terms of the settlement reached after it was accused of defrauding customers.
Brought to you by
Enhance Your Expertise with IGI’s In-Person Courses in NYCThis fall, sharpen your skills in jewelry grading, quality control and diamond assessment.
CollectionsNov 21, 2024
Channel Elphaba in Muse’s ‘Have a Heart x Cynthia Erivo’ CollectionCynthia Erivo chose Dreams of Hope, an organization dedicated to empowering LGBTQA+ youth, as the charity for this year’s collection.
MajorsNov 21, 2024
Rocksbox Opens Pop-Up Store in San FranciscoThe new space was designed to evoke a warm, inviting vibe.
IndependentsNov 21, 2024
Mary Moses Kinney Is Now Part of The Edge’s Team Kinney, who spent nearly 30 years at IJO, has been hired to head Abbott Jewelry Systems’ new virtual marketplace.
Events & AwardsNov 20, 2024
Kering Debuts New Jewelry Award With Sustainability FocusThe four finalists will present their pieces at the 2025 JCK Las Vegas show.
CollectionsNov 20, 2024
Pamela Love Channels Surrealist Artists in New CollectionThe “Camera Oscura” collection showcases earring designs celebrating female Surrealist artists Claude Cahun and Leonor Fini.
Policies & IssuesNov 20, 2024
Columbia Gem House Raises $10K for Reforestation EffortsThe money will fund the planting of 10,000 trees in critical areas across Oregon, Arizona, Montana, and other regions.
Events & AwardsNov 20, 2024
The Jewelry Symposium Opens Registration, Scholarship ApplicationsThe event centered on advancing jewelry manufacturing technology will return to Detroit in May 2025.
AuctionsNov 19, 2024
‘A Tsar’s Treasure’ Fetches $2.9M at Sotheby’s Jewelry SaleA collection of pieces owned by Ferdinand I, the first king of modern Bulgaria, and his family, blew away estimates in Geneva last week.
MajorsNov 19, 2024
Trove Opens First US Flagship in NYCThe Australian jewelry box brand’s new West Village store will showcase new jewelers each month through its Designer in Residence program.
CollectionsNov 19, 2024
Snoop Dogg’s New Jewelry Collection Is All About Love“Lovechild” was created in partnership with Carolyn Rafaelian’s Metal Alchemist brand.
EditorsNov 18, 2024
Q&A: Helzberg CEO Brad Hampton on the Jeweler’s RebrandHampton discussed how Helzberg is improving the customer experience and why it was inspired by the company formerly known as Dunkin’ Donuts.
Policies & IssuesNov 18, 2024
Reciprocity Jewels Returns to NYC Jewelry WeekThe group will host several curated events and an exhibition of designer jewelry made with Peruvian gold traceable to the miners’ names.
CollectionsNov 18, 2024
Dolly Parton Shines in Collaboration with Kendra ScottThe collection honors the 50th anniversary of Dolly Parton’s “Love is Like a Butterfly” song, which shares a birth year with Kendra Scott.
Events & AwardsNov 18, 2024
IGI Jewelry Design Competition ReturnsThis year’s theme asks designers to take inspiration from classic fairy tales.
EditorsNov 15, 2024
Why Fine Jewelry Belongs at New York Comic ConSenior Editor Lenore Fedow makes the case for why more jewelers should be appealing to nerds at the annual event.
CollectionsNov 15, 2024
Marie Lichtenberg Battles Counterfeits with New ‘Raiz’in Scapular’ DesignsThe latest “Raiz’in” drop showcases a newly designed “Scapular” necklace and donates a portion of the proceeds to Make-A-Wish France.
WatchesNov 15, 2024
Piece of the Week: Citizen’s Commemorative Pocket WatchNo. 1 out of 100, the timepiece was created to mark Citizen’s 100th anniversary and will be auctioned off at Sotheby’s next month.
Recorded WebinarsNov 15, 2024
Watch: 10 Tips to Keep Your Jewelry Store Secure On the latest episode of “My Next Question,” two experts share best practices for store security during the holidays and year-round.
AuctionsNov 14, 2024
18th-Century Diamond Necklace Sells for Nearly $5M Sotheby’s sold the necklace, which potentially has ties to Marie-Antoinette, for $4.8 million to a woman bidding via phone.
