CollectionsApr 26, 2024
Piece of the Week: Jacquie Aiche’s Starry Galaxy NecklaceThe necklace is featured in the brand’s “Rebel Heart” campaign starring Adam Levine and Behati Prinsloo.
CrimeDec 09, 2020
In the Wake of the Cyberattack on Stuller, 5 Tips on Cybersecurity
From password security to tracking-number safety, here are five cybersecurity tips to keep in mind.
The Jewelers’ Security Alliance shared tips on how to safely connect with customers online.
New York—Stuller was hit by a cyberattack over Thanksgiving weekend that delayed shipments, shut down the phone lines, and created other operational issues amid the holiday rush.
It took a few days for the massive manufacturer and supplier to get same-day shipping services on in-stock items and the phone lines back up and running.
While Stuller said there was no indication that sensitive business information was compromised—noting that customer credit cards on file are tokenized, encrypted, and not housed at Stuller—the stressful disruption came at the most critical time of the year for the supplier, underscoring the need for businesses today to invest in cybersecurity.
Stuller did not provide additional details on the specifics of the cyberattack.
In a COVID-19 world, and even before then, the ability to connect with customers online is crucial, whether one is running a consumer-facing retail store or a business-to-business operation.
Here are five expert tips on how to navigate the online world safely.
Ensure employees are adequately protected as they work from home.
Law enforcement officials have seen an uptick in fraud and hacking now that more people are working from home on computers or smartphones less secure than those in their office, the Jewelers’ Security Alliance said in a recent memo.
Be sure all employees’ devices have updated protections in place, including firewall, malware, and spam protection.
Stop using the same password for everything.
JSA advises having “strong, unique” passwords.
When the password for everything is the same, it may be easy to remember, but it’s also easy for hackers to gain access to several accounts in one swoop.
Users may also want to set up two-factor or multi-factor authentication.
“If a cybercriminal were to gain access to your log-in credentials, they wouldn’t be able to compromise your account if they didn’t have access to a passcode that would be sent to your phone,” explained Ryan Ruddock, senior research assistant at JSA, during an October webinar on online scams.
If you’re unsure about an email, just don’t open it.
Be wary of email phishing scams, which are attempts to trick users into giving criminals access to personal information.
“The intention behind phishing is to acquire personally identifiable information. So that’s going to include credit card information, social security numbers, account log-in credentials, and, in some cases, intellectual property,” said Ruddock.
It’s the most common type of cybercrime, said Ruddock, noting that it doesn’t target specific individuals.
Criminals will send a mass email in the
Editors' Picks
Sponsored by
hopes that some percentage will respond.
Misspellings and poor grammar are red flags to look for in phishing emails, he said, but also be wary of any email sent with a sense of urgency, pressuring users to act now, think later.
If an email doesn’t look trustworthy, don’t open it or click on any links. Delete it.
If a link in what is believed to be a phishing email is clicked, Ruddock recommended disconnecting from the WiFi, which could prevent malware from being installed on your computer, running an anti-virus scan, and changing passwords.
Also, be on the lookout for email spoofing, which involves an email sent from an address that’s almost, but not quite, identical to a genuine email address for a contact.
An email might look like it’s coming from longtime vendor, such as JohnSmith@jewelry.com, but upon closer inspection, it may actually read JohnSmith@jewellry.com.
If anything about the email seems off, it’s best to contact the vendor or customer by phone and be sure the request is genuine, JSA said.
Be careful with tracking numbers.
For any questions about a transaction, it’s best to reach out to the customer by phone via the number given at the time of purchase.
“You do not want to use the number given to you by the caller,” advised Ruddock.
JSA does not advise giving out the tracking number on a shipment. If a tracking number of a package is given to someone other than the customer, it may be possible for that person to redirect the merchandise.
JSA has also seen cases where a caller, pretending to be from a retail store, contacts a supplier and requests that a high-end item be sent to the store. The caller later diverts the shipment to a different address.
Set a limit on the number of times an address can be changed on a shipment, said Ruddock, and be clear with the shipper about how change of address requests should be handled.
Some companies, he said, have specified to their shipping company that if there are any attempts to change the address, the package should instead be returned to the company.
Make sure employees know the company’s cybersecurity policy.
Every company should have a written cybersecurity policy that is read and signed by employees, said JSA.
Be sure to regularly review the cyber-protocols with employees so everyone is on the same page.
Select cyber security firms also offer tests that allow employers to determine their employees’ ability to avoid phishing attacks and other scams.
Provide additional training to those employees who need it, advised Ruddock.
For more information about cybersecurity, visit the JSA website.
Misspellings and poor grammar are red flags to look for in phishing emails, he said, but also be wary of any email sent with a sense of urgency, pressuring users to act now, think later.
If an email doesn’t look trustworthy, don’t open it or click on any links. Delete it.
If a link in what is believed to be a phishing email is clicked, Ruddock recommended disconnecting from the WiFi, which could prevent malware from being installed on your computer, running an anti-virus scan, and changing passwords.
Also, be on the lookout for email spoofing, which involves an email sent from an address that’s almost, but not quite, identical to a genuine email address for a contact.
An email might look like it’s coming from longtime vendor, such as JohnSmith@jewelry.com, but upon closer inspection, it may actually read JohnSmith@jewellry.com.
If anything about the email seems off, it’s best to contact the vendor or customer by phone and be sure the request is genuine, JSA said.
Be careful with tracking numbers.
For any questions about a transaction, it’s best to reach out to the customer by phone via the number given at the time of purchase.
“You do not want to use the number given to you by the caller,” advised Ruddock.
JSA does not advise giving out the tracking number on a shipment. If a tracking number of a package is given to someone other than the customer, it may be possible for that person to redirect the merchandise.
JSA has also seen cases where a caller, pretending to be from a retail store, contacts a supplier and requests that a high-end item be sent to the store. The caller later diverts the shipment to a different address.
Set a limit on the number of times an address can be changed on a shipment, said Ruddock, and be clear with the shipper about how change of address requests should be handled.
Some companies, he said, have specified to their shipping company that if there are any attempts to change the address, the package should instead be returned to the company.
Make sure employees know the company’s cybersecurity policy.
Every company should have a written cybersecurity policy that is read and signed by employees, said JSA.
Be sure to regularly review the cyber-protocols with employees so everyone is on the same page.
Select cyber security firms also offer tests that allow employers to determine their employees’ ability to avoid phishing attacks and other scams.
Provide additional training to those employees who need it, advised Ruddock.
For more information about cybersecurity, visit the JSA website.
More on Crime
The Latest
Events & AwardsApr 26, 2024
AGS Conclave and GIA Symposium Are ConvergingThe two organizations will host a joint event, “Converge,” in September 2025.
SourcingApr 26, 2024
Anglo American Reportedly Shopping De Beers as BHP Eyes Anglo Big changes appear to be on the horizon for the diamond miner and its parent company, Anglo American.
Brought to you by
The Blueprint for Success in Scalable, Personalized Jewelry RetailWith Ho Brothers, you can unlock your brand's true potential and offer customers the personalized jewelry experiences they desire.
Events & AwardsApr 25, 2024
Alexis Padis Takes Over as AGS Board President Padis succeeds Lisa Bridge, marking the first time the organization has had two women board presidents in a row.
Weekly QuizApr 26, 2024
This Week’s QuizTest your jewelry news knowledge by answering these seven questions.
EditorsApr 25, 2024
5 Tips for Creating Fans from the Top (Savannah) Banana Jesse Cole, founder of Fans First Entertainment, shared the “five Es” of building a fan base during his AGS Conclave keynote.
WatchesApr 25, 2024
Audemars Piguet and John Mayer Partner on Limited Edition WatchThe Royal Oak Perpetual Calendar "John Mayer" was celebrated at a star-studded party in LA last week.
Brought to you by
How Jewelers of America Represents Your BusinessFor over 30 years, JA has advocated for the industry, fought against harmful legislation and backed measures that help jewelry businesses.
SourcingApr 25, 2024
De Beers Lowers Production Guidance for 2024The announcement came as the company reported a 23 percent drop in production in Q1.
MajorsApr 25, 2024
Detroit Lions’ QB Jared Goff Keeps Going to JaredThe three-time Pro Bowler continues to partner with the retailer, donating to a Detroit nonprofit and giving watches to fans.
CollectionsApr 24, 2024
Pippa Small Announces ‘Venus’ CollectionInspired by the Roman goddess of love, the designer looked to the sea for her new collection.
FinancialsApr 24, 2024
Kering’s Jewelry Brands a Bright Spot in Tough Q1The luxury titan posted declining sales, weighed down by Gucci’s poor performance.
Events & AwardsApr 24, 2024
JCK Industry Fund Announces 2024 Grant RecipientsThe selected nine organizations have outlined their plans for the funds.
SourcingApr 24, 2024
Rio Tinto’s Q1 Production Drops Amid Pause to Honor Lost Colleagues The mining company’s Diavik Diamond Mine lost four employees in a plane crash in January.
WatchesApr 24, 2024
These Are Rolex’s New Watches for 2024 The crown introduced a dozen timepieces in Geneva, including a heavy metal version of its deep-sea divers’ watch.
ColumnistsApr 23, 2024
The Smart Lab: Advanced Email Marketing Strategies for Mother’s DayEmmanuel Raheb recommends digging into demographic data, customizing your store’s communications, and retargeting ahead of May 12.
IndependentsApr 23, 2024
Hannoush Jewelers Opens New Store in New York Located in the town of Queensbury, it features a dedicated bridal section and a Gabriel & Co. store-in-store.
SourcingApr 23, 2024
Lucapa Sells 3 Diamonds for $10.5M in First Lulo Tender of 2024A 203-carat diamond from the alluvial mine in Angola achieved the highest price.
GradingApr 23, 2024
GIA Has a New Book About William RuserRuser was known for his figural jewelry with freshwater pearls and for his celebrity clientele.
CollectionsApr 22, 2024
Jacquie Aiche’s New Campaign Stars Adam Levine, Behati PrinslooThe “Rebel Heart” campaign embodies rebellion, romance, and sensuality, the brand said.
EditorsApr 22, 2024
The 22 Best Quotes from AGS Conclave 2024 Editor-in-Chief Michelle Graff shares the standout moments from the education sessions she attended in Austin last week.
SourcingApr 22, 2024
Virtual Diamond Boutique Rebrands as ‘VDB’The overhaul includes a new logo and enhanced digital marketplace.
MajorsApr 22, 2024
Signet Raises Nearly $9M for St. Jude Children’s Research HospitalThe money will go toward supporting ongoing research and aftercare programs for childhood cancer survivors.
CollectionsApr 19, 2024
Piece of the Week: Retrouvaí’s Treasure NecklaceA new addition to the “Heirloom” collection, this one-of-a-kind piece features 32 custom-cut gemstones.
MajorsApr 19, 2024
Unique Designs Acquires China PearlThe move will allow the manufacturing company to offer a more “diverse and comprehensive” range of products.
GradingApr 19, 2024
AGS Ideal Report Now Available in Printed FormFrom now through mid-May, GIA will be offering the reports at a 50 percent discount.
SourcingApr 18, 2024
Diamond Trade Remains Cautious Amid Economic UncertaintyDe Beers’ rough diamond sales were down 18 percent year-over-year in its latest round of sales.
