Policies & IssuesNov 04, 2025
Supreme Court to Hear Tariffs Case WednesdayAhead of the hearing, two industry organizations co-signed an amicus brief urging the court to declare Trump’s tariffs unlawful.
MajorsApr 03, 2018
Saks, Lord & Taylor the Latest Hit by Hackers
They reportedly gained access to the retailers’ cash register systems to steal payment card data from more than 5 million customers.
Hudson’s Bay Company announced Sunday that hackers had gained access to the debit and credit card numbers of customers at two of its retailers--Lord &Taylor and Saks.
New York--Saks Fifth Avenue and sister retailer Lord & Taylor just joined the long list of large companies that have been hacked.
On Sunday, parent company Hudson’s Bay Co. issued a short statement confirming that it had become aware of a “data security issue” involving the credit and debit card numbers of customers who shopped at certain Saks Fifth Avenue, Saks Off 5th and Lord & Taylor stores in North America.
While the investigation is ongoing, HBC said it doesn’t appear the breach impacted customers who shopped at any of its other stores or online, including on Gilt.com.
“The company deeply regrets any inconvenience or concern this might cause,” the statement reads. “Once the company has more clarity around the facts, it will notify customers quickly and will offer those impacted free identity protection services, including credit and web monitoring.”
HBC did not release any specifics about the number of consumers or location of stores impacted, but in a blog post also published Sunday, Gemini Advisory pinned the attack on a cybercrime syndicate known as JokerStash or Fin7.
The cybersecurity research firm said Fin7 announced March 28 it would be releasing for sale more than 5 million stolen debit and credit card numbers on the dark web, and already has put about 125,000 out there.
Fin7 didn’t say where it obtained the numbers, but Gemini said it confirmed with a “high degree of confidence” that the numbers came from Saks Fifth Avenue and Lord & Taylor. It estimated the breach occurred between May 2017 and now, impacting all Lord & Taylor and 83 Saks stores mainly in New York and New Jersey.
The research firm said it is “among the most significant credit card heists in modern history.”
A spokesperson for HBC declined to comment on Gemini’s statement.
Cybercrime is a growing problem for retailers, including retail jewelers.
In its recently released annual crime report for 2017, the Jewelers Security Alliance noted a “large dollar increase” in thefts by deception and impersonation made possible by the internet, with the average loss from this type of incident topping $1 million.
JSA President John J. Kennedy called it a “dangerous and growing crime trend” for the industry.
On Monday, he offered a number of cybersecurity tips for retailers. Some, he noted, might involve hiring an IT consulting firm.
Kennedy said retailers need to have proper firewalls and up-to-date anti-malware software for all systems, and they need to avoid visiting “questionable and risky sites.”
Jewelers
also need to educate their staff on the common mistakes made that let hackers in.
Kennedy said one of the main methods cybercriminals employ is social engineering, in which they use various methods to win the trust of the company’s employees in order to gain unauthorized access to its IT system.
(The New York Times reported this is what was used by the hackers who targeted Saks and Lord & Taylor. The credit and debit card numbers were stolen via software implanted into the stores’ cash register systems that, most likely, was installed through phishing emails sent to HBC employees.)
He said staff need to be told, or reminded, not to open or click into unknown or suspicious emails.
They also need to be aware that emails can be spoofs—which use the exact email address of known individuals—or come from someone who has obtained an email address that is very similar to, but not exactly the same as, a known party’s address. They need to look for foreign domains, misspellings and other anomalies in emails.
When a transaction is involved, Kennedy recommends calling the person on the phone to confirm that it is not a fraud.
He also recommends having a written cybersecurity policy employees have to read and sign, and having regular staff meetings that include reviews of the company’s cybersecurity protocols.
Kennedy said one of the main methods cybercriminals employ is social engineering, in which they use various methods to win the trust of the company’s employees in order to gain unauthorized access to its IT system.
(The New York Times reported this is what was used by the hackers who targeted Saks and Lord & Taylor. The credit and debit card numbers were stolen via software implanted into the stores’ cash register systems that, most likely, was installed through phishing emails sent to HBC employees.)
He said staff need to be told, or reminded, not to open or click into unknown or suspicious emails.
They also need to be aware that emails can be spoofs—which use the exact email address of known individuals—or come from someone who has obtained an email address that is very similar to, but not exactly the same as, a known party’s address. They need to look for foreign domains, misspellings and other anomalies in emails.
When a transaction is involved, Kennedy recommends calling the person on the phone to confirm that it is not a fraud.
He also recommends having a written cybersecurity policy employees have to read and sign, and having regular staff meetings that include reviews of the company’s cybersecurity protocols.
More on Majors
The Latest
ColumnistsNov 04, 2025
Peter Smith: What Do Birds Have to Do With the Price of Gold? Smith cautions retailers against expending too much energy on things they can’t control, like the rising price of gold.
TrendsNov 04, 2025
Amanda’s Style File: Fall Colors for November BirthdaysCitrine and topaz are birthstones fit for fall as the leaves change color and the holiday season approaches.
Brought to you by
Jewelers of America Aligns New Mission to Create Meaningful Impact for MembersFrom educational programs, advocacy, and recent MJSA affiliation, Jewelers of America drives progress that elevates businesses of all sizes.
IndependentsNov 04, 2025
Weston Jewelers Heads to Fort LauderdaleThe family-owned jeweler will open its fourth store in Florida in late 2027.
Weekly QuizOct 30, 2025
This Week’s QuizTest your jewelry news knowledge by answering these questions.
CrimeNov 03, 2025
Men Dressed as Construction Workers Burglarize Jeweler’s Home The NYPD is looking for three men who stole a safe and jewelry valued at $3.2 million from the home of a jeweler in Jamaica Hills, Queens.
CollectionsNov 03, 2025
Muse’s ‘Have a Heart’ Collab Returns, Now With DDGThe “Have a Heart x Diamonds Do Good” collection is championed by model and humanitarian Flaviana Matata and will benefit her foundation.
AuctionsNov 03, 2025
Kashmir Sapphire Ring Tops Christie's Online AuctionThe ring, set with a nearly 17-carat Kashmir cabochon sapphire, sold for $1 million.
TrendsOct 31, 2025
Piece of the Week: A Spinner Fit for ‘Frankenstein’This “Mother Father” spinner necklace from Heavenly Vices Fine Jewelry draws inspiration from Victorian Era jewelry.
CrimeOct 31, 2025
5 More Arrested in Louvre Heist, Jewelry Still Missing The suspects were rounded up in Paris and its suburbs on Wednesday night, but none of the stolen jewels were recovered with them.
Recorded WebinarsOct 31, 2025
Watch: How to Master Google Reviews for Your BusinessExperts share top tips on how to encourage positive reviews and handle negative feedback.
Supplier BulletinOct 30, 2025
Protect Your Customers and Your BusinessSponsored by the Gemological Institute of America
CrimeOct 30, 2025
29-Year-Old Man Charged in Multiple Seattle-Area Smash and Grabs The suspect faces charges in the August robbery of Menashe & Sons Jewelers and is accused of committing smash and grabs at two pawn shops.
Lab-GrownOct 30, 2025
Alison Lou’s New Collection Uses Lab-Grown Diamonds and ResinThe “Lumière Fine” collection was born from designer Alison Chemla’s interest in the transformative power of light.
TrendsOct 30, 2025
Amanda’s Style File: A Haunted HalloweenShow off your spooky side with these 12 festive jewels.
Events & AwardsOct 30, 2025
Jewelers Mutual to Host Jewelry Panel at Frazier History MuseumThe “Brilliant & Beyond” panel coincides with the “Love & Marriage” exhibition curated by Davis Jewelers in Louisville, Kentucky.
Events & AwardsOct 29, 2025
October Brings Little Change to Consumer Confidence Consumers are feeling more optimistic about their present situation while the short-term future remains a little scary.
Events & AwardsOct 29, 2025
Couture Partners With Time to WatchesThe company, which organizes a watch show in Geneva every spring, will bring a selection of watch brands to the 2026 Couture show in Vegas.
TrendsOct 29, 2025
Beth Bernstein Releases Vintage Jewelry Guide“The Modern Guide to Vintage Jewellery” follows the evolution of jewelry design from the ‘30s to the ‘80s with buying and styling advice.
EditorsOct 29, 2025
Why Creepy, Crawly Bugs Inspire Beautiful JewelryFor her annual Halloween story, Senior Editor Lenore Fedow explores the symbolism behind spiders, beetles, and other eerie insects.
Events & AwardsOct 28, 2025
Meet the 2026 Gem Award NomineesNotable jewelry designers, members of the press, and retailers are up for an award at next year’s gala.
Recorded WebinarsOct 28, 2025
Watch: The State of the Jewelry Industry Leaders from Jewelers of America and National Jeweler discuss the gold price, tariffs, and more in this one-hour webinar.
CollectionsOct 28, 2025
Eriness Reflects on Life in ‘One of One’ CollectionAfter experiencing motherhood, growth, and loss, founder and designer Erin Sachse has created 10 irreplaceable jewels.
AuctionsOct 27, 2025
Napoleon Left This Brooch Behind, And Now It’s Up For AuctionIt is part of Sotheby’s “Royal & Noble Jewels” sale along with an ornate hair ornament and an old mine-cut light pink diamond ring.
CrimeOct 27, 2025
Arrests Made in Louvre Jewel Heist One of the individuals was apprehended at the airport as he was trying to flee the country.
MajorsOct 27, 2025
Target to Cut 1,800 Corporate JobsThe retailer, which has faced struggling sales in recent quarters, is looking to streamline its operations.
