Bedding Giant Tempur Sealy Takes Systems Offline Following Cyberattack

Bedding products giant Tempur Sealy (NYSE: TPX) has shut down certain systems after falling victim to a cyberattack, the company revealed in a filing with the US Securities and Exchange Commission (SEC).

Based in Lexington, Kentucky, Tempur Sealy manufactures and sells mattresses, pillows, and other bedding products under brands such as Cocoon, Sealy, Stearns & Foster, and Tempus.

The incident, the company said in a Form 8-K filed on Monday, was identified on July 23, 2023, and triggered the activation of “incident response and business continuity plans”.

“This included proactively shutting down certain of the company’s IT systems, resulting in the temporary interruption of the company’s operations,” the company announced.

Tempur Sealy has started the process of restoring its critical IT systems and has already resumed operations, but the company did not say to what capacity.

“The forensic investigation remains ongoing and the company continues to work to determine whether this incident will have a material impact on its business, operations, or financial results,” the company said.

The bedding giant said it has yet to determine if any personal information was compromised during the attack, and that it would provide required notifications should that be the case.

It is unclear what type of cyberattack Tempur Sealy fell victim to, but the fact that it was forced to take systems offline suggests that ransomware might have been involved.

SecurityWeek has emailed Tempur Sealy for additional information on the attack and will update this article as soon as a reply arrives.

Related: CardioComm Takes Systems Offline Following Cyberattack

Related: Up to 11 Million People Hit by MOVEit Hack at Government Services Firm Maximus

Related: Tampa General Hospital Says Patient Information Stolen in Ransomware Attack