MajorsJul 26, 2024
Diamonds Direct Opens Store in AtlantaIt’s the Signet-owned banner’s first location in Georgia.
CrimeDec 09, 2020
In the Wake of the Cyberattack on Stuller, 5 Tips on Cybersecurity
From password security to tracking-number safety, here are five cybersecurity tips to keep in mind.
The Jewelers’ Security Alliance shared tips on how to safely connect with customers online.
New York—Stuller was hit by a cyberattack over Thanksgiving weekend that delayed shipments, shut down the phone lines, and created other operational issues amid the holiday rush.
It took a few days for the massive manufacturer and supplier to get same-day shipping services on in-stock items and the phone lines back up and running.
While Stuller said there was no indication that sensitive business information was compromised—noting that customer credit cards on file are tokenized, encrypted, and not housed at Stuller—the stressful disruption came at the most critical time of the year for the supplier, underscoring the need for businesses today to invest in cybersecurity.
Stuller did not provide additional details on the specifics of the cyberattack.
In a COVID-19 world, and even before then, the ability to connect with customers online is crucial, whether one is running a consumer-facing retail store or a business-to-business operation.
Here are five expert tips on how to navigate the online world safely.
Ensure employees are adequately protected as they work from home.
Law enforcement officials have seen an uptick in fraud and hacking now that more people are working from home on computers or smartphones less secure than those in their office, the Jewelers’ Security Alliance said in a recent memo.
Be sure all employees’ devices have updated protections in place, including firewall, malware, and spam protection.
Stop using the same password for everything.
JSA advises having “strong, unique” passwords.
When the password for everything is the same, it may be easy to remember, but it’s also easy for hackers to gain access to several accounts in one swoop.
Users may also want to set up two-factor or multi-factor authentication.
“If a cybercriminal were to gain access to your log-in credentials, they wouldn’t be able to compromise your account if they didn’t have access to a passcode that would be sent to your phone,” explained Ryan Ruddock, senior research assistant at JSA, during an October webinar on online scams.
If you’re unsure about an email, just don’t open it.
Be wary of email phishing scams, which are attempts to trick users into giving criminals access to personal information.
“The intention behind phishing is to acquire personally identifiable information. So that’s going to include credit card information, social security numbers, account log-in credentials, and, in some cases, intellectual property,” said Ruddock.
It’s the most common type of cybercrime, said Ruddock, noting that it doesn’t target specific individuals.
Criminals will send a mass email in the
hopes that some percentage will respond.
Misspellings and poor grammar are red flags to look for in phishing emails, he said, but also be wary of any email sent with a sense of urgency, pressuring users to act now, think later.
If an email doesn’t look trustworthy, don’t open it or click on any links. Delete it.
If a link in what is believed to be a phishing email is clicked, Ruddock recommended disconnecting from the WiFi, which could prevent malware from being installed on your computer, running an anti-virus scan, and changing passwords.
Also, be on the lookout for email spoofing, which involves an email sent from an address that’s almost, but not quite, identical to a genuine email address for a contact.
An email might look like it’s coming from longtime vendor, such as JohnSmith@jewelry.com, but upon closer inspection, it may actually read JohnSmith@jewellry.com.
If anything about the email seems off, it’s best to contact the vendor or customer by phone and be sure the request is genuine, JSA said.
Be careful with tracking numbers.
For any questions about a transaction, it’s best to reach out to the customer by phone via the number given at the time of purchase.
“You do not want to use the number given to you by the caller,” advised Ruddock.
JSA does not advise giving out the tracking number on a shipment. If a tracking number of a package is given to someone other than the customer, it may be possible for that person to redirect the merchandise.
JSA has also seen cases where a caller, pretending to be from a retail store, contacts a supplier and requests that a high-end item be sent to the store. The caller later diverts the shipment to a different address.
Set a limit on the number of times an address can be changed on a shipment, said Ruddock, and be clear with the shipper about how change of address requests should be handled.
Some companies, he said, have specified to their shipping company that if there are any attempts to change the address, the package should instead be returned to the company.
Make sure employees know the company’s cybersecurity policy.
Every company should have a written cybersecurity policy that is read and signed by employees, said JSA.
Be sure to regularly review the cyber-protocols with employees so everyone is on the same page.
Select cyber security firms also offer tests that allow employers to determine their employees’ ability to avoid phishing attacks and other scams.
Provide additional training to those employees who need it, advised Ruddock.
For more information about cybersecurity, visit the JSA website.
Misspellings and poor grammar are red flags to look for in phishing emails, he said, but also be wary of any email sent with a sense of urgency, pressuring users to act now, think later.
If an email doesn’t look trustworthy, don’t open it or click on any links. Delete it.
If a link in what is believed to be a phishing email is clicked, Ruddock recommended disconnecting from the WiFi, which could prevent malware from being installed on your computer, running an anti-virus scan, and changing passwords.
Also, be on the lookout for email spoofing, which involves an email sent from an address that’s almost, but not quite, identical to a genuine email address for a contact.
An email might look like it’s coming from longtime vendor, such as JohnSmith@jewelry.com, but upon closer inspection, it may actually read JohnSmith@jewellry.com.
If anything about the email seems off, it’s best to contact the vendor or customer by phone and be sure the request is genuine, JSA said.
Be careful with tracking numbers.
For any questions about a transaction, it’s best to reach out to the customer by phone via the number given at the time of purchase.
“You do not want to use the number given to you by the caller,” advised Ruddock.
JSA does not advise giving out the tracking number on a shipment. If a tracking number of a package is given to someone other than the customer, it may be possible for that person to redirect the merchandise.
JSA has also seen cases where a caller, pretending to be from a retail store, contacts a supplier and requests that a high-end item be sent to the store. The caller later diverts the shipment to a different address.
Set a limit on the number of times an address can be changed on a shipment, said Ruddock, and be clear with the shipper about how change of address requests should be handled.
Some companies, he said, have specified to their shipping company that if there are any attempts to change the address, the package should instead be returned to the company.
Make sure employees know the company’s cybersecurity policy.
Every company should have a written cybersecurity policy that is read and signed by employees, said JSA.
Be sure to regularly review the cyber-protocols with employees so everyone is on the same page.
Select cyber security firms also offer tests that allow employers to determine their employees’ ability to avoid phishing attacks and other scams.
Provide additional training to those employees who need it, advised Ruddock.
For more information about cybersecurity, visit the JSA website.
More on Crime
The Latest
TrendsJul 26, 2024
Piece of the Week: Bea Bongiasca’s ‘Double Loop’ EarringsCommemorate “brat summer” with these green hoops.
EditorsJul 26, 2024
Out & About: A Dispatch from the Nation’s Smallest StateEditor-in-Chief Michelle Graff returns from Rhode Island with thoughts about in-store shopping and a trends report.
Brought to you by
The End of an Era? Lab-Grown Diamonds' Journey Towards Price StabilityAs the demand for lab-grown diamond jewelry may still be increasing, the most notable change we are likely to see is price stabilization.
Supplier BulletinJul 25, 2024
Meet Gemology’s Next Generation Microscope: GIA® Gemolite® NXT Professional EditionSponsored by Gemological Institute of America
Weekly QuizJul 25, 2024
This Week’s QuizTest your jewelry news knowledge by answering these questions.
TechnologyJul 25, 2024
Amazon, BBB Sue Website Allegedly Peddling Fake Reviews They claim ReviewServiceUSA.com was selling both positive and negative reviews of products and businesses.
SourcingJul 25, 2024
De Beers’ H1 Revenue Falls 21% in ‘Weak’ MarketLab-grown diamond sales in the United States and ongoing economic challenges in China are impacting natural diamond demand.
Brought to you by
Meet Gemology’s Next Generation Microscope: GIA® Gemolite® NXT Professional EditionGIA®’s most advanced microscope has new features to optimize greater precision and comfort.
IndependentsJul 25, 2024
Store Designer Ruth Mellergaard DiesA longtime member of IJO, she’s remembered for her passion for design, learning, and environmentalism.
FinancialsJul 25, 2024
Boucheron, Pomellato Post Double-Digit Growth in Q2 The gains come amid a tough time for parent company Kering, which saw sales slide 11 percent in the first half of the year.
MajorsJul 25, 2024
Shane Co. Partners With Kids In Need Foundation to Donate 7,200 BackpacksThe fine jewelry retailer filled backpacks with back-to-school essentials for students in 13 states.
FinancialsJul 24, 2024
LVMH’s First-Half Jewelry, Watch Sales Dip 5%Tiffany & Co. is focusing on its “iconic” collections while the company has made changes at the top at TAG Heuer and Hublot.
MajorsJul 24, 2024
See Chaumet’s Paris Olympic Medals Inspired by its High JewelryThe Parisian brand is the first jewelry company in the history of the Olympic and Paralympic Games to design the medals.
MajorsJul 24, 2024
Jewelers Mutual Acquires Pawnbroker Insurance ProviderUnion Life & Casualty will join JM Insurance Agency Partners, expanding the provider’s pawnbroker coverage.
MajorsJul 24, 2024
Ben Bridge Announces 2024 Lonia Tate Scholarship WinnerLos Angeles-based Bradlei Smith was selected for this year’s award.
ColumnistsJul 23, 2024
Peter Smith: The Case for Optimism in Sales In his latest column, Smith shares multiple reasons why people who look at the glass as being hall full often make better salespeople.
SourcingJul 23, 2024
De Beers’ Production Drops 15% in Q2The company also reported the $150 million sale of an iron ore royalty right, part of its ongoing effort to divest “non-core” assets.
IndependentsJul 23, 2024
Long’s Jewelers Is Giving Away a Luxury Cape Cod VacationThe giveaway is part of the New England jeweler’s summer bridal event.
CollectionsJul 23, 2024
Guzema Debuts ‘Flower Power’ CampaignThe ad features three celebrity florists creating floral sculptures while wearing jewelry by Guzema.
Policies & IssuesJul 23, 2024
Diamonds Do Good Announces Its 2024 Entrepreneurship Grant WinnersThe grant provided a total of $100,000 to support 13 entrepreneurs from diamond communities in Africa and India.
Policies & IssuesJul 22, 2024
JVC’s Elyssa Jenkins-Pérez Joins RJCThe organization also announced Effie Marinos as its new specialist advisor for technical standards, as well as four other appointments.
SourcingJul 22, 2024
AWDC Names Karen Rentmeesters as CEORentmeesters has served as interim CEO since April following former CEO Ari Epstein’s resignation.
IndependentsJul 19, 2024
Longtime D.C. Jeweler Brian Mann Dies at 70Mann, whose family’s jewelry store was located inside the Pentagon, is remembered for being a thoughtful champion of the industry.
IndependentsJul 19, 2024
The 1916 Company Opens New Tudor BoutiqueThe 500-square-foot boutique is located in Denver’s Cherry Creek Shopping Center.
CollectionsJul 19, 2024
Piece of the Week: Messika’s ‘So Move Max’ NecklaceDance all night long with the “So Move Max” set’s necklace.
WatchesJul 18, 2024
TAG Heuer, Hublot Will Have New CEOs Luxury giant LVMH is reshuffling the leadership in its watches division.
MajorsJul 18, 2024
New Etsy Campaign Prioritizes Creators Amid BacklashSellers and shoppers have spoken out against a rise in mass-produced merchandise on the platform meant to highlight handmade goods.
