CFM
Company Details
Linkedin ID:
cardisfurnitureandmattresses
Website:
Employees number:
225
Number of followers:
2,601
NAICS:
337
Industry Type:
Homepage:
cardis.com
IP Addresses:
0
Company ID:
CAR_2681074
Scan Status:
In-progress
Cardi's Furniture & Mattresses Company CyberSecurity Posture
cardis.com
Cardi's History unfolds in the year 1901 in the town of Itri, Italy. NI-RO-PE's grandparents, Dominic and Rosa Cardi embarked for America, where they settled in the Knightsville section of Cranston. Rosa opened Cardi's as a general store in 1928. NI-RO-PE's father, Nicholas Cardi Sr., left high school at age 16 to work full time at the store. In 1942 he expanded the furniture business to include appliances and carpeting. Nicholas Cardi Sr.'s brother, Peter joined the company in 1945. He retired in 1975. Nicholas Jr., Ron, and Peter joined the family business full time after completing college. In 1983, Cardi's Furniture opened a Broyhill showcase gallery, one of the first in the country. Before retiring 1984, Nicholas Cardi Sr. Had a vision to reinvent Cardi's as it opened its first Superstore, a massive distribution center and new corporate offices. In 1989, Cardi's 24-acre Swansea facility opened offering customers the best furniture shopping experience in Rhode Island and Southeastern Massachusetts. Four years later, in 1993, Cardi's continued to provide for the changing needs of furniture shoppers by opening their first Thomasville showroom, also in Swansea. In the summer of 1996, Cardi's remarkable growth accelerated further with the opening of the largest showroom of its kind in all of New England! Cardi's second location on Route 2, West Warwick, is conveniently located to service the West Bay area of Rhode Island, and nearby Connecticut. Cardi's Swansea location serves Rhode Island's East Bay, Southern Massachusetts, Cape Cod and the Islands! In January 2000, Cardi's opened their second Thomasville Showroom and created the Rhode Island Design Center, the largest, most luxurious home furnishings interior design showroom in our marketplace, also on Route 2, West Warwick. Simultaneously, Cardi's Swansea location was completely renovated and expanded to 3 times its original size.
Cardi's Furniture & Mattresses A.I CyberSecurity Scoring
CFM Risk Score (AI oriented)Between 700 and 749
CFM
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
CFM Global Score (TPRM)XXXX
CFM
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
CFM Company CyberSecurity News & History
Past Incidents
1
Attack Types
1
Cardi’s Department Store Inc.
Breach
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: The Maine Attorney General's Office reported that Cardi’s Department Store Inc. experienced a data breach on February 6, 2025, potentially affecting the personal information of approximately 22 Maine residents. The breach involved unauthorized access to personal information, including names, Social Security numbers, driver's license numbers, and financial account information. Written notice was provided to the affected individuals on March 10, 2025.
CFM Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for CFM
Incidents vs Furniture and Home Furnishings Manufacturing Industry Average (This Year)
No incidents recorded for Cardi's Furniture & Mattresses in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Cardi's Furniture & Mattresses in 2025.
Incident Types CFM vs Furniture and Home Furnishings Manufacturing Industry Avg (This Year)
No incidents recorded for Cardi's Furniture & Mattresses in 2025.
Incident History — CFM (X = Date, Y = Severity)
CFM cyber incidents detection timeline including parent company and subsidiaries
CFM Company Subsidiaries
Cardi's History unfolds in the year 1901 in the town of Itri, Italy. NI-RO-PE's grandparents, Dominic and Rosa Cardi embarked for America, where they settled in the Knightsville section of Cranston. Rosa opened Cardi's as a general store in 1928. NI-RO-PE's father, Nicholas Cardi Sr., left high school at age 16 to work full time at the store. In 1942 he expanded the furniture business to include appliances and carpeting. Nicholas Cardi Sr.'s brother, Peter joined the company in 1945. He retired in 1975. Nicholas Jr., Ron, and Peter joined the family business full time after completing college. In 1983, Cardi's Furniture opened a Broyhill showcase gallery, one of the first in the country. Before retiring 1984, Nicholas Cardi Sr. Had a vision to reinvent Cardi's as it opened its first Superstore, a massive distribution center and new corporate offices. In 1989, Cardi's 24-acre Swansea facility opened offering customers the best furniture shopping experience in Rhode Island and Southeastern Massachusetts. Four years later, in 1993, Cardi's continued to provide for the changing needs of furniture shoppers by opening their first Thomasville showroom, also in Swansea. In the summer of 1996, Cardi's remarkable growth accelerated further with the opening of the largest showroom of its kind in all of New England! Cardi's second location on Route 2, West Warwick, is conveniently located to service the West Bay area of Rhode Island, and nearby Connecticut. Cardi's Swansea location serves Rhode Island's East Bay, Southern Massachusetts, Cape Cod and the Islands! In January 2000, Cardi's opened their second Thomasville Showroom and created the Rhode Island Design Center, the largest, most luxurious home furnishings interior design showroom in our marketplace, also on Route 2, West Warwick. Simultaneously, Cardi's Swansea location was completely renovated and expanded to 3 times its original size.
Loading...
CFM Similar Companies
Northway Industries, Inc.
Northway Industries, Inc. specializes in fabricating laminated products that are “Good Enough to Call Your Own”. Outsourcing with Northway can drive your top-line revenues, increase bottom-line profits and shorten your lead times. That’s why we invite you to “Make Our Shop – Your Shop”. For over 50
Casual Living Unlimited
Casual Living Unlimited is a leader in the development and manufacturing of beautifully-designed, high-quality outdoor furniture, including the Breezesta brand of products. Founded with the vision of creating a durable, low-maintenance product from recycled plastic bottles, the Company partners wit
The Agility Company
Agility is a company built to quickly respond to the ever-changing business needs of our customers. Through our experience, ingenuity, and innovation, Agility provides results that achieve more with less: human-centric solutions that make common sense. Agility works seamlessly with organizations to
The Bold Companies
Bold proudly offers a full compliment of services to help you get from your concept to a completed project. Industrial Design Our entire design staff is at your disposal to take your idea all the way from a concept or napkin sketch to a drawing or full rendering based on your need. Our design d
ARTHUR BONNET
Fabricant de cuisines depuis 90 ans, Arthur Bonnet est le premier cuisiniste français labellisé Origine France Garantie. La marque propose des modèles de cuisines exclusifs combinant élégance et convivialité et réussit le pari d'un design à la fois esthétique, fonctionnel, ergonomique et innovant.
Ivars USA
We created Ivars USA in 2006 to provide a service. We wanted to create an intelligent, international network-based, organization with a focus on office furniture components development and supply. Our extensive experience in seating components and custom castings, coupled with an extraordinary mar
.png)
CFM CyberSecurity News
November 25, 2025 06:37 PM
Toys for Tots returns, collecting now through Dec. 24
WPRI 12 has again partnered with Cardi's Furniture & Mattresses and the U.S. Marine Corps Reserve to support the Toys for Tots campaign,...
November 25, 2025 01:37 PM
Toys for Tots returns, collecting now through Dec. 24
EAST PROVIDENCE, RI (WPRI) — WPRI 12 has again partnered with Cardi's Furniture & Mattresses and the U.S. Marine Corps Reserve to support...
November 21, 2025 12:47 PM
Cardi’s Furniture and Mattresses are decked for the holidays
Today, we were live with Ron and Pete Cardi at the totally decked out for the holidays, Rt 2 West Warwick showroom at Cardi's Furniture and...
November 19, 2025 01:39 PM
Make Bristol’s Santa House part of your Holiday tradition
This morning on The Rhode Home, we welcomed Michael Rielly from the Bristol Santa House, along with NIROPE, Ron and Pete Cardi, of Cardi's...
November 05, 2025 08:00 AM
Join Cardi’s Furniture & Mattresses in supporting Armenian Fest this weekend
This morning on The Rhode Home, we welcomed Alysha Melkoun from the Sts. Vartanantz Armenian Apostolic Church, along with NIROPE,...
October 17, 2025 07:00 AM
Join Cardi’s Furniture & Mattresses in supporting the RI Italian American Hall of Fame
From Motomotion seating available at Cardi's Furniture & Mattresses to the RI Italian American Hall of Fame's upcoming event honoring Lidia...
October 16, 2025 07:00 AM
Building independence
The Project Forward room at Johnston Senior High School more resembles a household than a traditional classroom. That's by design.
October 10, 2025 07:00 AM
Join Cardi’s Furniture & Mattresses in supporting Junior Achievement of Rhode Island
Today on The Rhode Home, we welcomed Cassi Steenblok, Director of Development of Junior Achievement of Rhode Island and Casey Riley,...
October 06, 2025 07:00 AM
Hometown Hero: Kayleigh Garrepy, North Kingstown
This week's Cardi's Furniture & Mattresses Hometown Sports Hero is Kayleigh Garrepy.
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
CFM CyberSecurity History Information
Official Website of Cardi's Furniture & Mattresses
The official website of Cardi's Furniture & Mattresses is http://www.cardis.com.
Cardi's Furniture & Mattresses’s AI-Generated Cybersecurity Score
According to Rankiteo, Cardi's Furniture & Mattresses’s AI-generated cybersecurity score is 709, reflecting their Moderate security posture.
How many security badges does Cardi's Furniture & Mattresses’ have ?
According to Rankiteo, Cardi's Furniture & Mattresses currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Cardi's Furniture & Mattresses have SOC 2 Type 1 certification ?
According to Rankiteo, Cardi's Furniture & Mattresses is not certified under SOC 2 Type 1.
Does Cardi's Furniture & Mattresses have SOC 2 Type 2 certification ?
According to Rankiteo, Cardi's Furniture & Mattresses does not hold a SOC 2 Type 2 certification.
Does Cardi's Furniture & Mattresses comply with GDPR ?
According to Rankiteo, Cardi's Furniture & Mattresses is not listed as GDPR compliant.
Does Cardi's Furniture & Mattresses have PCI DSS certification ?
According to Rankiteo, Cardi's Furniture & Mattresses does not currently maintain PCI DSS compliance.
Does Cardi's Furniture & Mattresses comply with HIPAA ?
According to Rankiteo, Cardi's Furniture & Mattresses is not compliant with HIPAA regulations.
Does Cardi's Furniture & Mattresses have ISO 27001 certification ?
According to Rankiteo,Cardi's Furniture & Mattresses is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Cardi's Furniture & Mattresses
Cardi's Furniture & Mattresses operates primarily in the Furniture and Home Furnishings Manufacturing industry.
Number of Employees at Cardi's Furniture & Mattresses
Cardi's Furniture & Mattresses employs approximately 225 people worldwide.
Subsidiaries Owned by Cardi's Furniture & Mattresses
Cardi's Furniture & Mattresses presently has no subsidiaries across any sectors.
Cardi's Furniture & Mattresses’s LinkedIn Followers
Cardi's Furniture & Mattresses’s official LinkedIn profile has approximately 2,601 followers.
NAICS Classification of Cardi's Furniture & Mattresses
Cardi's Furniture & Mattresses is classified under the NAICS code 337, which corresponds to Furniture and Related Product Manufacturing.
Cardi's Furniture & Mattresses’s Presence on Crunchbase
No, Cardi's Furniture & Mattresses does not have a profile on Crunchbase.
Cardi's Furniture & Mattresses’s Presence on LinkedIn
Yes, Cardi's Furniture & Mattresses maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/cardisfurnitureandmattresses.
Cybersecurity Incidents Involving Cardi's Furniture & Mattresses
As of November 28, 2025, Rankiteo reports that Cardi's Furniture & Mattresses has experienced 1 cybersecurity incidents.
Number of Peer and Competitor Companies
Cardi's Furniture & Mattresses has an estimated 2,617 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Cardi's Furniture & Mattresses ?
Incident Types: The types of cybersecurity incidents that have occurred include Breach.
Incident Details
Can you provide details on each incident ?
Title: Cardi’s Department Store Inc. Data Breach
Description: Unauthorized access to personal information including names, Social Security numbers, driver's license numbers, and financial account information.
Date Detected: 2025-02-06
Date Publicly Disclosed: 2025-03-10
Type: Data Breach
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Breach.
Impact of the Incidents
What was the impact of each incident ?
Incident : Data Breach CAR454080525
Data Compromised: Names, Social security numbers, Driver's license numbers, Financial account information
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Names, Social Security Numbers, Driver'S License Numbers, Financial Account Information and .
Which entities were affected by each incident ?
Incident : Data Breach CAR454080525
Entity Name: Cardi’s Department Store Inc.
Entity Type: Retail
Industry: Retail
Location: Maine
Customers Affected: 22
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach CAR454080525
Type of Data Compromised: Names, Social security numbers, Driver's license numbers, Financial account information
Number of Records Exposed: 22
Sensitivity of Data: High
References
Where can I find more information about each incident ?
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: Maine Attorney General's OfficeDate Accessed: 2025-03-10.
Additional Questions
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on 2025-02-06.
What was the most recent incident publicly disclosed ?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2025-03-10.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were names, Social Security numbers, driver's license numbers, financial account information and .
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were names, Social Security numbers, financial account information and driver's license numbers.
What was the number of records exposed in the most significant breach ?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 22.0.
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident is Maine Attorney General's Office.
.png)
Latest Global CVEs (Not Company-Specific)
Description
ThingsBoard in versions prior to v4.2.1 allows an authenticated user to upload malicious SVG images via the "Image Gallery", leading to a Stored Cross-Site Scripting (XSS) vulnerability. The exploit can be triggered when any user accesses the public API endpoint of the malicious SVG images, or if the malicious images are embedded in an `iframe` element, during a widget creation, deployed to any page of the platform (e.g., dashboards), and accessed during normal operations. The vulnerability resides in the `ImageController`, which fails to restrict the execution of JavaScript code when an image is loaded by the user's browser. This vulnerability can lead to the execution of malicious code in the context of other users' sessions, potentially compromising their accounts and allowing unauthorized actions.
Risk Information
cvss4
Base: 6.2
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:H/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12 fail to to verify that the token used during the code exchange originates from the same authentication flow, which allows an authenticated user to perform account takeover via a specially crafted email address used when switching authentication methods and sending a request to the /users/login/sso/code-exchange endpoint. The vulnerability requires ExperimentalEnableAuthenticationTransfer to be enabled (default: enabled) and RequireEmailVerification to be disabled (default: disabled).
Risk Information
cvss3
Base: 9.9
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
References
Description
Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12 fail to sanitize team email addresses to be visible only to Team Admins, which allows any authenticated user to view team email addresses via the GET /api/v4/channels/{channel_id}/common_teams endpoint
Risk Information
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
References
Description
Exposure of email service credentials to users without administrative rights in Devolutions Server.This issue affects Devolutions Server: before 2025.2.21, before 2025.3.9.
Description
Exposure of credentials in unintended requests in Devolutions Server.This issue affects Server: through 2025.2.20, through 2025.3.8.
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=cardisfurnitureandmattresses' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
