Dive Brief:
- Bassett Furniture Industries on July 10 identified that a “threat actor” gained unauthorized access to a portion of its IT systems, according to a filing with the U.S. Securities and Exchange Commission.
- The responsible party disrupted business operations by encrypting a portion of the company’s data files.
- Bassett Furniture began taking steps to contain the incident and shut down some of its systems. As a result, the company is currently not operating its manufacturing facilities.
Dive Insight:
Although Bassett Furniture stores and its e-commerce operations are open, the company’s ability to fulfill orders has been impacted by the attack.
Upon detecting the breach, the retailer began taking steps to contain the incident and launched an investigation. As part of an incident response plan, the company shut down some of its systems, including its manufacturing facilities.
The company doesn’t believe customers’ personal information was impacted, however, the full scope of the incident is still unknown.
“The Company has not yet determined whether the incident is reasonably likely to materially impact the Company’s financial condition or results of operations,” the business wrote in its filing.
Bassett Furniture is working to get impacted systems back online and is identifying means of continuing offline operations to mitigate disruptions. As of July 19, the company has not provided any additional updates and did not respond to a request for comment.
