Events & AwardsApr 18, 2025
Daymond John to Give Keynote at JCK Las VegasThe entrepreneur and “Shark Tank” star will share his top tips for success.
CrimeDec 09, 2020
In the Wake of the Cyberattack on Stuller, 5 Tips on Cybersecurity
From password security to tracking-number safety, here are five cybersecurity tips to keep in mind.
The Jewelers’ Security Alliance shared tips on how to safely connect with customers online.
New York—Stuller was hit by a cyberattack over Thanksgiving weekend that delayed shipments, shut down the phone lines, and created other operational issues amid the holiday rush.
It took a few days for the massive manufacturer and supplier to get same-day shipping services on in-stock items and the phone lines back up and running.
While Stuller said there was no indication that sensitive business information was compromised—noting that customer credit cards on file are tokenized, encrypted, and not housed at Stuller—the stressful disruption came at the most critical time of the year for the supplier, underscoring the need for businesses today to invest in cybersecurity.
Stuller did not provide additional details on the specifics of the cyberattack.
In a COVID-19 world, and even before then, the ability to connect with customers online is crucial, whether one is running a consumer-facing retail store or a business-to-business operation.
Here are five expert tips on how to navigate the online world safely.
Ensure employees are adequately protected as they work from home.
Law enforcement officials have seen an uptick in fraud and hacking now that more people are working from home on computers or smartphones less secure than those in their office, the Jewelers’ Security Alliance said in a recent memo.
Be sure all employees’ devices have updated protections in place, including firewall, malware, and spam protection.
Stop using the same password for everything.
JSA advises having “strong, unique” passwords.
When the password for everything is the same, it may be easy to remember, but it’s also easy for hackers to gain access to several accounts in one swoop.
Users may also want to set up two-factor or multi-factor authentication.
“If a cybercriminal were to gain access to your log-in credentials, they wouldn’t be able to compromise your account if they didn’t have access to a passcode that would be sent to your phone,” explained Ryan Ruddock, senior research assistant at JSA, during an October webinar on online scams.
If you’re unsure about an email, just don’t open it.
Be wary of email phishing scams, which are attempts to trick users into giving criminals access to personal information.
“The intention behind phishing is to acquire personally identifiable information. So that’s going to include credit card information, social security numbers, account log-in credentials, and, in some cases, intellectual property,” said Ruddock.
It’s the most common type of cybercrime, said Ruddock, noting that it doesn’t target specific individuals.
Criminals will send a mass email in the
hopes that some percentage will respond.
Misspellings and poor grammar are red flags to look for in phishing emails, he said, but also be wary of any email sent with a sense of urgency, pressuring users to act now, think later.
If an email doesn’t look trustworthy, don’t open it or click on any links. Delete it.
If a link in what is believed to be a phishing email is clicked, Ruddock recommended disconnecting from the WiFi, which could prevent malware from being installed on your computer, running an anti-virus scan, and changing passwords.
Also, be on the lookout for email spoofing, which involves an email sent from an address that’s almost, but not quite, identical to a genuine email address for a contact.
An email might look like it’s coming from longtime vendor, such as JohnSmith@jewelry.com, but upon closer inspection, it may actually read JohnSmith@jewellry.com.
If anything about the email seems off, it’s best to contact the vendor or customer by phone and be sure the request is genuine, JSA said.
Be careful with tracking numbers.
For any questions about a transaction, it’s best to reach out to the customer by phone via the number given at the time of purchase.
“You do not want to use the number given to you by the caller,” advised Ruddock.
JSA does not advise giving out the tracking number on a shipment. If a tracking number of a package is given to someone other than the customer, it may be possible for that person to redirect the merchandise.
JSA has also seen cases where a caller, pretending to be from a retail store, contacts a supplier and requests that a high-end item be sent to the store. The caller later diverts the shipment to a different address.
Set a limit on the number of times an address can be changed on a shipment, said Ruddock, and be clear with the shipper about how change of address requests should be handled.
Some companies, he said, have specified to their shipping company that if there are any attempts to change the address, the package should instead be returned to the company.
Make sure employees know the company’s cybersecurity policy.
Every company should have a written cybersecurity policy that is read and signed by employees, said JSA.
Be sure to regularly review the cyber-protocols with employees so everyone is on the same page.
Select cyber security firms also offer tests that allow employers to determine their employees’ ability to avoid phishing attacks and other scams.
Provide additional training to those employees who need it, advised Ruddock.
For more information about cybersecurity, visit the JSA website.
Misspellings and poor grammar are red flags to look for in phishing emails, he said, but also be wary of any email sent with a sense of urgency, pressuring users to act now, think later.
If an email doesn’t look trustworthy, don’t open it or click on any links. Delete it.
If a link in what is believed to be a phishing email is clicked, Ruddock recommended disconnecting from the WiFi, which could prevent malware from being installed on your computer, running an anti-virus scan, and changing passwords.
Also, be on the lookout for email spoofing, which involves an email sent from an address that’s almost, but not quite, identical to a genuine email address for a contact.
An email might look like it’s coming from longtime vendor, such as JohnSmith@jewelry.com, but upon closer inspection, it may actually read JohnSmith@jewellry.com.
If anything about the email seems off, it’s best to contact the vendor or customer by phone and be sure the request is genuine, JSA said.
Be careful with tracking numbers.
For any questions about a transaction, it’s best to reach out to the customer by phone via the number given at the time of purchase.
“You do not want to use the number given to you by the caller,” advised Ruddock.
JSA does not advise giving out the tracking number on a shipment. If a tracking number of a package is given to someone other than the customer, it may be possible for that person to redirect the merchandise.
JSA has also seen cases where a caller, pretending to be from a retail store, contacts a supplier and requests that a high-end item be sent to the store. The caller later diverts the shipment to a different address.
Set a limit on the number of times an address can be changed on a shipment, said Ruddock, and be clear with the shipper about how change of address requests should be handled.
Some companies, he said, have specified to their shipping company that if there are any attempts to change the address, the package should instead be returned to the company.
Make sure employees know the company’s cybersecurity policy.
Every company should have a written cybersecurity policy that is read and signed by employees, said JSA.
Be sure to regularly review the cyber-protocols with employees so everyone is on the same page.
Select cyber security firms also offer tests that allow employers to determine their employees’ ability to avoid phishing attacks and other scams.
Provide additional training to those employees who need it, advised Ruddock.
For more information about cybersecurity, visit the JSA website.
More on Crime
The Latest
CollectionsApr 18, 2025
Piece of the Week: Dukachi’s ‘Easter Bread’ PendantThe Ukrainian brand’s new pendant is modeled after a traditional paska, a pastry often baked for Easter in Eastern European cultures.
IndependentsApr 18, 2025
Bremer Jewelry to Reveal Renovated StoreThe jeweler has announced a grand reopening for its recently remodeled location in Peoria, Illinois.
MajorsApr 18, 2025
Tiffany & Co. Employees Star in Mother’s Day CampaignThe “Strong Like Mom” campaign features moms who work at Tiffany & Co. and their children.
Weekly QuizApr 18, 2025
This Week’s QuizTest your jewelry news knowledge by answering these questions.
CollectionsApr 17, 2025
John Hardy, Athena Calderone Partner on Art Deco Decor-Inspired CollectionInterior designer Athena Calderone looked to decor from the 1920s and 1930s when crafting her first fine jewelry collection.
FinancialsApr 17, 2025
Movado Group to Increase Prices to Offset Tariffs ImpactDuring a call about its full-year results, CEO Efraim Grinberg discussed how the company is approaching the uncertainty surrounding tariffs.
Brought to you by
The Heart of the Industry: Giving Bench Jewelers the Recognition They DeserveBench jewelers spend years honing their skills, Jewelers of America’s Certification validates their talents.
Lab-GrownApr 17, 2025
NDC Launches Its Diamond Learning CenterThe free program provides educational content for jewelry salespeople and enthusiasts to learn or refresh their diamond knowledge.
Policies & IssuesApr 17, 2025
Jewelers of America Requests Tariffs Testimonials from MembersThe feedback will be used to prepare other jewelers for the challenges ahead, the organization said.
TechnologyApr 17, 2025
Technology Therapy Group Expands AI Training for Jewelry RetailersThe online sessions are designed to teach jewelers to use AI tools like ChatGPT and Claude to grow their business.
IndependentsApr 16, 2025
Catbird Expands to ChicagoThe opening marks the jewelry retailer’s first location in the Midwest.
CollectionsApr 16, 2025
Foundrae’s First Commitment Jewelry Collection Unites Through LoveThe “United in Love” collection offers tangible mementos of hearts entwined with traditional and non-traditional commitment heirlooms.
IndependentsApr 16, 2025
Indiana Jeweler to Host Black Jewelry Designer Pop-UpRobert Goodman Jewelers will hold a “Black Jewelry Designers and Makers” event on April 27.
MajorsApr 16, 2025
WJA Announces Board Members, New Chicago Chapter PresidentThe announcements follow a tumultuous start to 2025 for WJA, which saw a wave of resignations following controversial statements about DEI.
EditorsApr 15, 2025
Tariffs: What We Know Right Now Editor-in-Chief Michelle Graff answers questions about how the new taxes levied on countries like India and China will impact the industry.
EditorsApr 15, 2025
Q&A: Bogolo Joy Kenewendo on Making Deals, Marketing DiamondsKenewendo, Botswana’s minster of minerals and energy, discusses closing the deal with De Beers and the work that was missed along the way.
AuctionsApr 15, 2025
23-Carat ‘Golconda Blue’ Heads to AuctionThe historic fancy vivid blue diamond set to headline Christie’s Geneva sale next month could sell for up to $50 million.
FinancialsApr 15, 2025
LVMH’s Q1 Sales Slip 2 PercentLVMH CFO Cécile Cabanis also discussed the effects of tariffs so far.
SourcingApr 15, 2025
Diamond Club West Coast Names 2025 BoardThe organization has reelected Kalpesh Jhaveri as president.
FinancialsApr 14, 2025
Movado to Restate Years of Financials Due to ‘Misconduct’ in Dubai An investigation found that the former managing director of Movado’s Dubai branch overstated and prematurely recorded sales.
CollectionsApr 14, 2025
Sauer Embraces Emptiness Through ‘Ma’ CollectionThe collection pays tribute to the Japanese philosophy of Ma, studying balance, stillness, and the interplay between presence and absence.
IndependentsApr 14, 2025
Illinois Jeweler Closing After 45 YearsMari Lou’s Fine Jewelry in Orland Park, a suburb of Chicago, is closing its doors.
GradingApr 14, 2025
GIA Expands Overseas Services as Tariffs Kick InGIA’s labs in Dubai and Hong Kong are now accepting larger diamonds in light of the “logistical challenges” presented by the new tariffs.
AuctionsApr 11, 2025
Piece of the Week: A Replica of Princess Grace’s Wedding EarringsThese earrings by Van Cleef & Arpels, featuring the same design as a pair worn by Princess Grace, are up for auction at Woolley & Wallis.
Recorded WebinarsApr 11, 2025
Watch: Top Tips for Saving Time With AITwo experts share how artificial intelligence tools can help retailers run a more efficient business.
SourcingApr 11, 2025
Mikimoto Names New President, CEO for U.S. DivisionKentaro Nishimura, who has been with the pearl company since 1997, has been promoted to president and CEO of Mikimoto America.
