Leggett & Platt

Leggett & Platt is a prominent American manufacturer specializing in residential and commercial furniture components, bedding products, and related industrial materials. The company operates globally, supplying a diverse range of products including springs, mechanisms, and upholstery materials to furniture makers, retailers, and other industrial clients. Its operations span multiple continents, serving markets in North America, Europe, and Asia. The organization is known for its extensive product portfolio and long-standing presence in the furniture supply chain, though specific operational details are not provided in the available context.

In 2021, Leggett & Platt experienced a significant cybersecurity incident when it was compromised as part of a widespread attack by the Clop ransomware gang. The attackers exploited a critical vulnerability in the MOVEit Transfer file-sharing tool, a commonly used enterprise solution, to gain unauthorized access to the company's systems. This breach resulted in the exfiltration of sensitive data, including employee details and health records, which were subsequently listed on Clop's dark web leak site. The incident was part of a larger campaign affecting numerous organizations across various sectors, highlighting systemic risks associated with unpatched software vulnerabilities. The company's inclusion among victims such as financial institutions and government entities underscored the broad targeting strategy of the ransomware group, which demanded ransom payments under threat of public data disclosure. This event represents a notable cybersecurity challenge in the company's recent history, illustrating the pervasive threat of ransomware attacks leveraging third-party software flaws.