Mattress maker Tempur Sealy is responding to a cyberattack that led the company to shut down some of its IT systems.
The company’s operations were disrupted by the attack, which it discovered on July 23 and disclosed in a filing with the Securities and Exchange Commission on Monday.
The attack occurred almost two months after the company signed an agreement to acquire Mattress Firm for about $4 billion, a deal that would position Tempur Sealy as one of the world’s largest mattress manufacturers with one of the largest mattress retail footprints in the U.S. The deal is expected to close in the second half of 2024.
Tempur Sealy said it started bringing some of its critical IT systems back online and resumed operations this week.
The company did not say if a threat actor gained access to its systems, if ransomware is involved, or if any data was stolen. Tempur Sealy did not immediately respond to a request for additional information.
“The forensic investigation remains ongoing and the company continues to work to determine whether this incident will have a material impact on its business, operations or financial results,” Bhaskar Rao, the company’s EVP and CFO, said in the SEC filing.
Tempur Sealy said it activated its incident response plans to contain the incident upon discovery. The company also said it notified law enforcement and engaged legal counsel and a cybersecurity forensic to investigate further.