CollectionsApr 25, 2025
Sylvie Looks to Water in New Sculptural Bridal Collection“Shell Auranova” is the next generation of the brand’s bridal line, featuring half-bezel engagement rings with bold and fluid designs.
MajorsApr 03, 2018
Saks, Lord & Taylor the Latest Hit by Hackers
They reportedly gained access to the retailers’ cash register systems to steal payment card data from more than 5 million customers.
Hudson’s Bay Company announced Sunday that hackers had gained access to the debit and credit card numbers of customers at two of its retailers--Lord &Taylor and Saks.
New York--Saks Fifth Avenue and sister retailer Lord & Taylor just joined the long list of large companies that have been hacked.
On Sunday, parent company Hudson’s Bay Co. issued a short statement confirming that it had become aware of a “data security issue” involving the credit and debit card numbers of customers who shopped at certain Saks Fifth Avenue, Saks Off 5th and Lord & Taylor stores in North America.
While the investigation is ongoing, HBC said it doesn’t appear the breach impacted customers who shopped at any of its other stores or online, including on Gilt.com.
“The company deeply regrets any inconvenience or concern this might cause,” the statement reads. “Once the company has more clarity around the facts, it will notify customers quickly and will offer those impacted free identity protection services, including credit and web monitoring.”
HBC did not release any specifics about the number of consumers or location of stores impacted, but in a blog post also published Sunday, Gemini Advisory pinned the attack on a cybercrime syndicate known as JokerStash or Fin7.
The cybersecurity research firm said Fin7 announced March 28 it would be releasing for sale more than 5 million stolen debit and credit card numbers on the dark web, and already has put about 125,000 out there.
Fin7 didn’t say where it obtained the numbers, but Gemini said it confirmed with a “high degree of confidence” that the numbers came from Saks Fifth Avenue and Lord & Taylor. It estimated the breach occurred between May 2017 and now, impacting all Lord & Taylor and 83 Saks stores mainly in New York and New Jersey.
The research firm said it is “among the most significant credit card heists in modern history.”
A spokesperson for HBC declined to comment on Gemini’s statement.
Cybercrime is a growing problem for retailers, including retail jewelers.
In its recently released annual crime report for 2017, the Jewelers Security Alliance noted a “large dollar increase” in thefts by deception and impersonation made possible by the internet, with the average loss from this type of incident topping $1 million.
JSA President John J. Kennedy called it a “dangerous and growing crime trend” for the industry.
On Monday, he offered a number of cybersecurity tips for retailers. Some, he noted, might involve hiring an IT consulting firm.
Kennedy said retailers need to have proper firewalls and up-to-date anti-malware software for all systems, and they need to avoid visiting “questionable and risky sites.”
Jewelers
also need to educate their staff on the common mistakes made that let hackers in.
Kennedy said one of the main methods cybercriminals employ is social engineering, in which they use various methods to win the trust of the company’s employees in order to gain unauthorized access to its IT system.
(The New York Times reported this is what was used by the hackers who targeted Saks and Lord & Taylor. The credit and debit card numbers were stolen via software implanted into the stores’ cash register systems that, most likely, was installed through phishing emails sent to HBC employees.)
He said staff need to be told, or reminded, not to open or click into unknown or suspicious emails.
They also need to be aware that emails can be spoofs—which use the exact email address of known individuals—or come from someone who has obtained an email address that is very similar to, but not exactly the same as, a known party’s address. They need to look for foreign domains, misspellings and other anomalies in emails.
When a transaction is involved, Kennedy recommends calling the person on the phone to confirm that it is not a fraud.
He also recommends having a written cybersecurity policy employees have to read and sign, and having regular staff meetings that include reviews of the company’s cybersecurity protocols.
Kennedy said one of the main methods cybercriminals employ is social engineering, in which they use various methods to win the trust of the company’s employees in order to gain unauthorized access to its IT system.
(The New York Times reported this is what was used by the hackers who targeted Saks and Lord & Taylor. The credit and debit card numbers were stolen via software implanted into the stores’ cash register systems that, most likely, was installed through phishing emails sent to HBC employees.)
He said staff need to be told, or reminded, not to open or click into unknown or suspicious emails.
They also need to be aware that emails can be spoofs—which use the exact email address of known individuals—or come from someone who has obtained an email address that is very similar to, but not exactly the same as, a known party’s address. They need to look for foreign domains, misspellings and other anomalies in emails.
When a transaction is involved, Kennedy recommends calling the person on the phone to confirm that it is not a fraud.
He also recommends having a written cybersecurity policy employees have to read and sign, and having regular staff meetings that include reviews of the company’s cybersecurity protocols.
More on Majors
The Latest
FinancialsApr 25, 2025
Kering’s Jewelry Brands Persevere as Q1 Sales Sink 14%Boucheron and Pomellato performed well in an otherwise bleak quarter for Kering amid struggles at Gucci.
EditorsApr 25, 2025
Piece of the Week: Deborah Meyers Experience’s ‘The Birds’ EarringsDesigner Deborah Meyers created her birds from oxidized sterling silver, rose-cut diamond eyes, and Akoya Keshi pearl feathers.
Brought to you by
Emerging Jewelers Accelerator Program Announces Second Cohort of Aspiring Jewelry Entrepreneurs Six new retail businesses were selected for the 2025 program, which began in January.
SourcingApr 25, 2025
De Beers Sales, Production Fall in Q1 Amid UncertaintyThe company said it expects sightholders to remain “cautious” with their purchasing due to all the unknowns around the U.S. tariffs.
Weekly QuizApr 24, 2025
This Week’s QuizTest your jewelry news knowledge by answering these questions.
Supplier BulletinApr 24, 2025
Protect Your Customers and Your BusinessSponsored by the Gemological Institute of America
EditorsApr 24, 2025
Q&A: Wolf’s CEO Talks U.S. ExpansionSimon Wolf shares why the time was right to open a new office here, what he looks for in a retail partner, and why he loves U.S. consumers.
Brought to you by
Protect Your Customers and Your BusinessThe risk of laboratory-grown diamonds being falsely presented as natural diamonds presents a very significant danger to consumer trust.
IndependentsApr 24, 2025
Longtime Iowa Jeweler Herman Ginsberg Dies at 99 A third-generation jeweler, Ginsberg worked at his family’s store, Ginsberg Jewelers, from 1948 until his retirement in 2019.
FinancialsApr 24, 2025
Charles & Colvard Delisted From Nasdaq Due to NoncomplianceThe company failed to file its quarterly reports in a timely manner.
SourcingApr 24, 2025
Young Diamantaires Transition to NonprofitThe organization also announced its board of directors.
TrendsApr 24, 2025
Amanda’s Style File: So CharmingCharms may be tiny but with their small size comes endless layering possibilities, from bracelets to necklaces and earrings.
Events & AwardsApr 23, 2025
PDPaola Creative Director Wins FGI’s ‘Rising Star’ AwardPaola Sasplugas, co-founder of the Barcelona-based jewelry brand, received the Fine Jewelry Award.
AuctionsApr 23, 2025
Rare Custom Rolex Daytona Heads to AuctionA platinum Zenith-powered Daytona commissioned in the late ‘90s will headline Sotheby’s Important Watches sale in Geneva next month.
MajorsApr 22, 2025
Zales’ Rebrand Takes Playful Approach to Fine JewelryThe Signet Jewelers-owned retailer wants to encourage younger shoppers to wear fine jewelry every day, not just on special occasions.
AuctionsApr 22, 2025
Christie’s to Auction JAR Jewelry CollectionThe 21 pieces, all from a private collector, will be offered at its Magnificent Jewels auction next month.
ColumnistsApr 22, 2025
The PR Adviser: Building Buzz Through Word of MouthLilian Raji answers a question from a reader who is looking to grow her jewelry business but has a limited marketing budget.
GradingApr 22, 2025
Avi Levy Is GCAL By Sarine’s New Chief Growth OfficerGCAL by Sarine created the new role to sharpen the company’s focus on strategic partnerships and scalable expansion.
IndependentsApr 22, 2025
Brinker’s Jewelers Acquires Fellow IndependentThe Indiana jeweler has acquired Scottsdale Fine Jewelers in Scottsdale, Arizona.
Events & AwardsApr 21, 2025
An Exhibition Exploring the History of Cartier Is Now on Display“Cartier: Design, Craft, and Legacy” opened earlier this month at the Victoria and Albert Museum in London.
IndependentsApr 21, 2025
New York Jeweler to Close After 111 YearsVan Cott Jewelers in Vestal, New York, is hosting a going-out-of-business sale.
IndependentsApr 21, 2025
IJO Names New Director of Vendor Relations, Merchandise StrategyIndustry veteran Samantha Larson has held leadership roles at Borsheims, McTeigue & McClelland, Stuller, and Long’s Jewelers.
Events & AwardsApr 21, 2025
Jewelers of Louisiana, Mississippi Jewelers Association to Co-Host ConventionThe two organizations will hold the educational event together this fall in Mississippi.
Events & AwardsApr 18, 2025
Daymond John to Give Keynote at JCK Las VegasThe entrepreneur and “Shark Tank” star will share his top tips for success.
CollectionsApr 18, 2025
Piece of the Week: Dukachi’s ‘Easter Bread’ PendantThe Ukrainian brand’s new pendant is modeled after a traditional paska, a pastry often baked for Easter in Eastern European cultures.
IndependentsApr 18, 2025
Bremer Jewelry to Reveal Renovated StoreThe jeweler has announced a grand reopening for its recently remodeled location in Peoria, Illinois.
MajorsApr 18, 2025
Tiffany & Co. Employees Star in Mother’s Day CampaignThe “Strong Like Mom” campaign features moms who work at Tiffany & Co. and their children.
