Lab-GrownJun 04, 2025
GIA Reverting to More General Terminology for Lab-Grown DiamondsIt will quit assigning the stones specific color and clarity grades in favor of applying “new descriptive terminology.”
MajorsApr 03, 2018
Saks, Lord & Taylor the Latest Hit by Hackers
They reportedly gained access to the retailers’ cash register systems to steal payment card data from more than 5 million customers.
Hudson’s Bay Company announced Sunday that hackers had gained access to the debit and credit card numbers of customers at two of its retailers--Lord &Taylor and Saks.
New York--Saks Fifth Avenue and sister retailer Lord & Taylor just joined the long list of large companies that have been hacked.
On Sunday, parent company Hudson’s Bay Co. issued a short statement confirming that it had become aware of a “data security issue” involving the credit and debit card numbers of customers who shopped at certain Saks Fifth Avenue, Saks Off 5th and Lord & Taylor stores in North America.
While the investigation is ongoing, HBC said it doesn’t appear the breach impacted customers who shopped at any of its other stores or online, including on Gilt.com.
“The company deeply regrets any inconvenience or concern this might cause,” the statement reads. “Once the company has more clarity around the facts, it will notify customers quickly and will offer those impacted free identity protection services, including credit and web monitoring.”
HBC did not release any specifics about the number of consumers or location of stores impacted, but in a blog post also published Sunday, Gemini Advisory pinned the attack on a cybercrime syndicate known as JokerStash or Fin7.
The cybersecurity research firm said Fin7 announced March 28 it would be releasing for sale more than 5 million stolen debit and credit card numbers on the dark web, and already has put about 125,000 out there.
Fin7 didn’t say where it obtained the numbers, but Gemini said it confirmed with a “high degree of confidence” that the numbers came from Saks Fifth Avenue and Lord & Taylor. It estimated the breach occurred between May 2017 and now, impacting all Lord & Taylor and 83 Saks stores mainly in New York and New Jersey.
The research firm said it is “among the most significant credit card heists in modern history.”
A spokesperson for HBC declined to comment on Gemini’s statement.
Cybercrime is a growing problem for retailers, including retail jewelers.
In its recently released annual crime report for 2017, the Jewelers Security Alliance noted a “large dollar increase” in thefts by deception and impersonation made possible by the internet, with the average loss from this type of incident topping $1 million.
JSA President John J. Kennedy called it a “dangerous and growing crime trend” for the industry.
On Monday, he offered a number of cybersecurity tips for retailers. Some, he noted, might involve hiring an IT consulting firm.
Kennedy said retailers need to have proper firewalls and up-to-date anti-malware software for all systems, and they need to avoid visiting “questionable and risky sites.”
Jewelers
also need to educate their staff on the common mistakes made that let hackers in.
Kennedy said one of the main methods cybercriminals employ is social engineering, in which they use various methods to win the trust of the company’s employees in order to gain unauthorized access to its IT system.
(The New York Times reported this is what was used by the hackers who targeted Saks and Lord & Taylor. The credit and debit card numbers were stolen via software implanted into the stores’ cash register systems that, most likely, was installed through phishing emails sent to HBC employees.)
He said staff need to be told, or reminded, not to open or click into unknown or suspicious emails.
They also need to be aware that emails can be spoofs—which use the exact email address of known individuals—or come from someone who has obtained an email address that is very similar to, but not exactly the same as, a known party’s address. They need to look for foreign domains, misspellings and other anomalies in emails.
When a transaction is involved, Kennedy recommends calling the person on the phone to confirm that it is not a fraud.
He also recommends having a written cybersecurity policy employees have to read and sign, and having regular staff meetings that include reviews of the company’s cybersecurity protocols.
Kennedy said one of the main methods cybercriminals employ is social engineering, in which they use various methods to win the trust of the company’s employees in order to gain unauthorized access to its IT system.
(The New York Times reported this is what was used by the hackers who targeted Saks and Lord & Taylor. The credit and debit card numbers were stolen via software implanted into the stores’ cash register systems that, most likely, was installed through phishing emails sent to HBC employees.)
He said staff need to be told, or reminded, not to open or click into unknown or suspicious emails.
They also need to be aware that emails can be spoofs—which use the exact email address of known individuals—or come from someone who has obtained an email address that is very similar to, but not exactly the same as, a known party’s address. They need to look for foreign domains, misspellings and other anomalies in emails.
When a transaction is involved, Kennedy recommends calling the person on the phone to confirm that it is not a fraud.
He also recommends having a written cybersecurity policy employees have to read and sign, and having regular staff meetings that include reviews of the company’s cybersecurity protocols.
More on Majors
The Latest
Events & AwardsJun 04, 2025
As JCK Talks Returns, Don’t Miss These 12 SessionsFrom design trends to sustainability, here’s a roundup of can’t-miss education sessions at JCK Las Vegas.
CrimeJun 04, 2025
10 Safety Tips for the Las Vegas Shows The Jewelers’ Security Alliance offers advice for those attending the annual trade shows.
Brought to you by
The True Power Behind the Counter: Why Sales Associates Are the Heart of the Jewelry BusinessWhen investing in your jewelry business, it's important not to overlook the most crucial element of success: the sales associates.
Events & AwardsJun 04, 2025
Daymond John to Give Keynote at JCK Las VegasThe entrepreneur and “Shark Tank” star will share his top tips for success.
Weekly QuizMay 30, 2025
This Week’s QuizTest your jewelry news knowledge by answering these questions.
CollectionsJun 03, 2025
In Her Latest Collection, Viviana Langhoff Is Leaning Into GoldThe designer is embracing bold pieces with weight to them in “AU79,” a collection she celebrated with a creative launch party.
FinancialsJun 03, 2025
Signet Jewelers Sees Turnaround in Q1 With Sales Ticking Up 2%On an earnings call, CEO J.K. Symancyk discussed what’s working for the company and how it’s preparing for the potential impact of tariffs.
Brought to you by
Clienteling Isn’t a Buzzword. It’s an Essential Business Model.More shoppers are walking out without buying. Here’s how smart jewelers can bring them back—and the tool they need to do it right.
SurveysJun 03, 2025
Consumer Confidence Improves in May The index partially rebounded after months of decline, due in part to the U.S.-China deal to temporarily reduce import tariffs.
CollectionsJun 03, 2025
Dakota Johnson Is Roberto Coin’s New Brand AmbassadorThe actress stars in the latest campaign set in Venice, Italy, and is set to participate in other creative initiatives for the jeweler.
GradingJun 03, 2025
Mason-Kay Jade Adds ‘Fei Cui’ to Jade ReportsThe company has joined other labs, including GIA and Lotus Gemology, in adopting the Chinese term for "jadeite jade."
SourcingJun 02, 2025
Gemfields’ June Auction to Include 36-Carat RubyThe large stone will be offered at its June sale along with a selection of secondary-type rubies from a new area of the Montepuez mine.
GradingJun 02, 2025
GSI Opens New Lab in Thailand Located in Bangkok, the laboratory is Gemological Science International’s 14th location worldwide.
TrendsJun 02, 2025
Amanda’s Style File: Three Gems for June Those born in June have a myriad of options for their birthstone jewelry.
SourcingJun 02, 2025
David Allouche Joins Grandview Klein DiamondsThe diamond industry veteran has been named its senior sales executive.
FinancialsMay 30, 2025
Movado’s Q1 Sales Slip Amid ‘Challenging’ Retail Environment The company plans to raise the prices of select watches to offset the impact of tariffs.
Policies & IssuesMay 30, 2025
Tariffs & Designers: Navigating Pricing in an Unstable EnvironmentBetween tariffs and the sky-high cost of gold, designers enter this year’s Las Vegas shows with a lot of questions and few answers.
CollectionsMay 30, 2025
Piece of the Week: Renato Cipullo’s ‘Hematite Blaze’ NecklaceDesigned by founder Renato and his daughter Serena Cipullo, it showcases a flame motif representing unity and the power of gathering.
Policies & IssuesMay 30, 2025
Trade Court Declares Trump’s Tariffs InvalidHowever, the tariffs remain in effect in the short term, as an appeals court has stayed the U.S. Court of International Trade’s decision.
CollectionsMay 29, 2025
Britney Spears Files Trademark for New Jewelry LineThe pop icon is one step closer to launching her “B Tiny” jewelry collection, a collection she first began posting about last fall.
Supplier BulletinMay 29, 2025
Inoveo Platinum Grain, Exclusively Distributed by StullerSponsored by Stuller
SourcingMay 29, 2025
Grizzly Auctions 6,620-Carat EmeraldIt was featured in the miner’s latest sale, which brought in $24.8 million.
TechnologyMay 29, 2025
GemFind Launches AI Product Description SoftwareGemText AI uses artificial intelligence to generate tailored product titles, descriptions, and tags with jewelry-specific language.
CrimeMay 28, 2025
8 Convicted in Kim Kardashian Jewelry Heist TrialAging and with myriad health issues, none will serve time for their roles in robbing the billionaire celebrity at gunpoint in 2016.
CollectionsMay 28, 2025
NY Liberty’s 2024 Championship Rings Honor Historic WinThe WNBA team received rings imbued with meaning, from leaf motifs and its Liberty torch to the number of diamonds used.
MajorsMay 28, 2025
Andrew Rickard Named JBT PresidentA longtime executive at RDI Diamonds, Rickard has served on the JBT board for the past five years.
MajorsMay 27, 2025
MJSA to Become Part of Jewelers of America The two organizations have signed an affiliation agreement that’s expected to be finalized in the coming weeks.
