ColumnistsSep 05, 2025
Peter Smith: A Lasting Lesson From Maurice Tempelsman Smith recalls a bit of wisdom the industry leader, who died last week, shared at a diamond conference years ago.
MajorsApr 03, 2018
Saks, Lord & Taylor the Latest Hit by Hackers
They reportedly gained access to the retailers’ cash register systems to steal payment card data from more than 5 million customers.
Hudson’s Bay Company announced Sunday that hackers had gained access to the debit and credit card numbers of customers at two of its retailers--Lord &Taylor and Saks.
New York--Saks Fifth Avenue and sister retailer Lord & Taylor just joined the long list of large companies that have been hacked.
On Sunday, parent company Hudson’s Bay Co. issued a short statement confirming that it had become aware of a “data security issue” involving the credit and debit card numbers of customers who shopped at certain Saks Fifth Avenue, Saks Off 5th and Lord & Taylor stores in North America.
While the investigation is ongoing, HBC said it doesn’t appear the breach impacted customers who shopped at any of its other stores or online, including on Gilt.com.
“The company deeply regrets any inconvenience or concern this might cause,” the statement reads. “Once the company has more clarity around the facts, it will notify customers quickly and will offer those impacted free identity protection services, including credit and web monitoring.”
HBC did not release any specifics about the number of consumers or location of stores impacted, but in a blog post also published Sunday, Gemini Advisory pinned the attack on a cybercrime syndicate known as JokerStash or Fin7.
The cybersecurity research firm said Fin7 announced March 28 it would be releasing for sale more than 5 million stolen debit and credit card numbers on the dark web, and already has put about 125,000 out there.
Fin7 didn’t say where it obtained the numbers, but Gemini said it confirmed with a “high degree of confidence” that the numbers came from Saks Fifth Avenue and Lord & Taylor. It estimated the breach occurred between May 2017 and now, impacting all Lord & Taylor and 83 Saks stores mainly in New York and New Jersey.
The research firm said it is “among the most significant credit card heists in modern history.”
A spokesperson for HBC declined to comment on Gemini’s statement.
Cybercrime is a growing problem for retailers, including retail jewelers.
In its recently released annual crime report for 2017, the Jewelers Security Alliance noted a “large dollar increase” in thefts by deception and impersonation made possible by the internet, with the average loss from this type of incident topping $1 million.
JSA President John J. Kennedy called it a “dangerous and growing crime trend” for the industry.
On Monday, he offered a number of cybersecurity tips for retailers. Some, he noted, might involve hiring an IT consulting firm.
Kennedy said retailers need to have proper firewalls and up-to-date anti-malware software for all systems, and they need to avoid visiting “questionable and risky sites.”
Jewelers
also need to educate their staff on the common mistakes made that let hackers in.
Kennedy said one of the main methods cybercriminals employ is social engineering, in which they use various methods to win the trust of the company’s employees in order to gain unauthorized access to its IT system.
(The New York Times reported this is what was used by the hackers who targeted Saks and Lord & Taylor. The credit and debit card numbers were stolen via software implanted into the stores’ cash register systems that, most likely, was installed through phishing emails sent to HBC employees.)
He said staff need to be told, or reminded, not to open or click into unknown or suspicious emails.
They also need to be aware that emails can be spoofs—which use the exact email address of known individuals—or come from someone who has obtained an email address that is very similar to, but not exactly the same as, a known party’s address. They need to look for foreign domains, misspellings and other anomalies in emails.
When a transaction is involved, Kennedy recommends calling the person on the phone to confirm that it is not a fraud.
He also recommends having a written cybersecurity policy employees have to read and sign, and having regular staff meetings that include reviews of the company’s cybersecurity protocols.
Kennedy said one of the main methods cybercriminals employ is social engineering, in which they use various methods to win the trust of the company’s employees in order to gain unauthorized access to its IT system.
(The New York Times reported this is what was used by the hackers who targeted Saks and Lord & Taylor. The credit and debit card numbers were stolen via software implanted into the stores’ cash register systems that, most likely, was installed through phishing emails sent to HBC employees.)
He said staff need to be told, or reminded, not to open or click into unknown or suspicious emails.
They also need to be aware that emails can be spoofs—which use the exact email address of known individuals—or come from someone who has obtained an email address that is very similar to, but not exactly the same as, a known party’s address. They need to look for foreign domains, misspellings and other anomalies in emails.
When a transaction is involved, Kennedy recommends calling the person on the phone to confirm that it is not a fraud.
He also recommends having a written cybersecurity policy employees have to read and sign, and having regular staff meetings that include reviews of the company’s cybersecurity protocols.
More on Majors
The Latest
CollectionsSep 05, 2025
Piece of the Week: Jamie Turner’s ‘Victoria’ Necklace The “Victoria” necklace features a labradorite hugged by diamond accents in 18-karat yellow gold.
Policies & IssuesSep 05, 2025
Trump Takes Tariffs Case to the Supreme Court Two lower courts have moved to block the import taxes, which will remain in place as the legal battle continues.
Brought to you by
Rallying Call for the Jewelry Industry on Tariffs and Other Key IssuesJewelers of America is leading the charge to protect the industry amidst rising economic threats.
WatchesSep 05, 2025
Patrick Mahomes Is the New Hublot Brand AmbassadorThe Kansas City Chiefs quarterback shares Hublot’s dedication to pursuing greatness, the Swiss watchmaker said.
Weekly QuizSep 04, 2025
This Week’s QuizTest your jewelry news knowledge by answering these questions.
SourcingSep 04, 2025
Lucara Unveils Unusual 37-Carat Pink DiamondThe Type IIa stone, recovered from Botswana’s Karowe diamond mine last month, features unique coloration.
Brought to you by
Taking the Moment Head On: How Rio Grande Champions the Present & Future of Fine JewelryAs a leading global jewelry supplier, Rio Grande is rapidly expanding and developing new solutions to meet the needs of jewelers worldwide.
Events & AwardsSep 04, 2025
27 Can’t-Miss Converge Sessions, Events From sunrise yoga to tariffs talks, these are some events to check out at the upcoming inaugural event.
WatchesSep 04, 2025
Breitling Takes Its NFL Game to the Next Level Breitling is now the NFL’s official timepiece partner, a move that puts the brand in front of the millions of Americans who watch football.
Events & AwardsSep 04, 2025
The NYC Jewelry, Antique, & Object Show Returns in NovemberNYCJAOS is set for Nov. 21-23 in New York City’s Chelsea neighborhood.
SourcingSep 03, 2025
Gemfields Confirms Completion of Fabergé SaleU.S.-based investment company SMG Capital LLC is the new owner of the luxury brand.
TrendsSep 03, 2025
Amanda’s Style File: A Perfect BirthstoneSapphire’s variety of colors make it the perfect birthstone for September.
FinancialsSep 02, 2025
Lab-Grown Diamonds, Lower-Priced Fashion Jewelry Drive Signet Jewelers’ Q2 SalesThe retailer has raised its guidance after seeing total sales increase 3 percent in the second quarter, beating expectations.
MajorsSep 02, 2025
Birks CEO Jean-Christophe Bédos Steps DownNiccolò Rossi di Montelera, executive chairman of the board, was appointed as interim CEO.
MajorsSep 02, 2025
Harry Winston Opens Its Largest Flagship in JapanThe three-floor space also features the jeweler’s largest VIP salon in Japan and offers an exclusive diamond pendant.
CollectionsSep 02, 2025
Stephanie Gottlieb Debuts Silver Designs in ‘All Hours’ CollabThe collection is a collaboration between Stephanie Gottlieb Fine Jewelry and Oak and Luna, focusing on understated essentials.
AuctionsAug 29, 2025
Sotheby’s UAE Sale to Feature 32-Carat Fancy Vivid Orangy Pink DiamondThe highlight of a single-owner jewelry and watch collection, it’s estimated to fetch up to $7 million at auction this December.
FinancialsAug 29, 2025
Movado’s Q2 Sales Rebound Despite Tariff ImpactCEO Efraim Grinberg noted a resurgence in the fashion watch market.
CollectionsAug 29, 2025
Piece of the Week: Mark Davis’ ‘Bullseye’ Necklace The “Bullseye” necklace, with vintage bakelite and peridot, August’s birthstone, is the perfect transitional piece as summer turns to fall.
Supplier BulletinAug 28, 2025
Clientbook Is Helping Jewelers Turn Clienteling Challenges into Wins with Hands-On Training and CoachingSponsored by Clientbook
GradingAug 28, 2025
GIA’s New ‘Quality Assessment’ for Lab-Grown Diamonds Is Coming It will classify lab-grown stones into one of two categories, “premium” or “standard,” in lieu of giving specific color and clarity grades.
SourcingAug 28, 2025
Botswana Declares Public Health Emergency Amid Diamond Sales SlumpPresident Duma Boko addressed the country’s medical supply chain crisis in a recent televised address.
MajorsAug 28, 2025
Borsheims Names New Jewelry BuyerFormer Free People buyer Afton Robertson-Kanne recently joined the retailer.
IndependentsAug 28, 2025
Sissy’s Log Cabin Donates School Supplies to Memphis StudentsThe jeweler teamed up with two local organizations for its inaugural “Back to School and Bling” event.
EditorsAug 27, 2025
Taylor Swift’s Engagement Ring Is a Fairy Tale for Vintage Diamond CutsThe singer’s new bling, reportedly a natural old mine-cut diamond, is no paper ring.
SourcingAug 27, 2025
11,685-Carat Emerald Recovered From Zambia’s Kagem MineDubbed the “Imboo,” or “buffalo,” emerald, the rough gemstone is part of Gemfields’ latest emerald auction, which is taking place now.
