FMU
Company Details
Linkedin ID:
furnituremartusa
Website:
Employees number:
419
Number of followers:
13,992
NAICS:
337
Industry Type:
Homepage:
furnituremartusa.com
IP Addresses:
0
Company ID:
FUR_3375386
Scan Status:
In-progress
Furniture Mart USA Company CyberSecurity Posture
furnituremartusa.com
Furniture Mart USA is a proud, family-owned furniture retail operation. Founded in 1976 by William A. Hinks, we have grown from a single location in Sioux Falls, SD to number 50 on the list of America’s Top 100 Furniture retailers, with 50+ retail store locations within the upper Midwest, spanning across North Dakota, South Dakota, Minnesota, Iowa and Wisconsin. Stores operated by Furniture Mart USA are Ashley Furniture HomeStores, Furniture Mart, Unclaimed Freight Furniture, Furniture Mart Office & Design and Carpet One, as well as a few necessary clearance centers. Sioux Falls has remained the home of our headquarters with the corporate office and Distribution Center housed in a nearly three-hundred-thousand square foot facility. Our strategy has always been to provide low-cost, high-quality furniture, mattresses, and accessories with a high level of customer service in order to best serve the needs of our customers.
Furniture Mart USA A.I CyberSecurity Scoring
FMU Risk Score (AI oriented)Between 650 and 699
FMU
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
FMU Global Score (TPRM)XXXX
FMU
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
FMU Company CyberSecurity News & History
Past Incidents
2
Attack Types
1
Furniture Mart USA
Breach
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: The South Dakota Attorney General's Office reported a data breach involving Furniture Mart USA on January 24, 2025. The breach occurred on November 3, 2024, when an unknown actor viewed and copied certain files containing personal information, including names and additional unspecified data. The number of affected individuals is currently unknown.
Furniture Mart, USA
Breach
Rankiteo Explanation
Attack with significant impact with customers data leaks
Description: The Maine Attorney General's Office reported a data breach involving Furniture Mart, USA on January 24, 2025. The breach occurred on November 3, 2024, when an unknown actor viewed and copied personal information of approximately two Maine residents, including names, Social Security numbers, and driver's license numbers. Furniture Mart is providing credit monitoring services for twelve months to the affected individuals.
FMU Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for FMU
Incidents vs Furniture and Home Furnishings Manufacturing Industry Average (This Year)
No incidents recorded for Furniture Mart USA in 2025.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Furniture Mart USA in 2025.
Incident Types FMU vs Furniture and Home Furnishings Manufacturing Industry Avg (This Year)
No incidents recorded for Furniture Mart USA in 2025.
Incident History — FMU (X = Date, Y = Severity)
FMU cyber incidents detection timeline including parent company and subsidiaries
FMU Company Subsidiaries
Furniture Mart USA is a proud, family-owned furniture retail operation. Founded in 1976 by William A. Hinks, we have grown from a single location in Sioux Falls, SD to number 50 on the list of America’s Top 100 Furniture retailers, with 50+ retail store locations within the upper Midwest, spanning across North Dakota, South Dakota, Minnesota, Iowa and Wisconsin. Stores operated by Furniture Mart USA are Ashley Furniture HomeStores, Furniture Mart, Unclaimed Freight Furniture, Furniture Mart Office & Design and Carpet One, as well as a few necessary clearance centers. Sioux Falls has remained the home of our headquarters with the corporate office and Distribution Center housed in a nearly three-hundred-thousand square foot facility. Our strategy has always been to provide low-cost, high-quality furniture, mattresses, and accessories with a high level of customer service in order to best serve the needs of our customers.
Loading...
FMU Similar Companies
Plymouth Furniture
Plymouth Furniture has three major aspects that make it great. First is the furniture store that has different fabrics and leather options so you can get the furniture you want the way you want it. Next is the Bedding Showroom which has over 20 styles on display with brands like Sealy, Sealy Posturp
Swedwood
Swedwood is the industrial group within IKEA. The primary function is to manufacture and distribute furniture. Swedwood “integrates backwards” in the supply chain to lower costs and efficiently distribute the products. Swedwood is open to every possible type of cost cutting, and IKEA’s motto, “Nothi
Weaver Furniture Sales
An Amish owned business, Weaver Furniture Sales provides custom Amish furniture to clients across the United States from their quiet country showroom in Shipshewana, Indiana. Established in 1989, the company offers a full line of solid wood, Amish Furniture at affordable prices – for both residentia
Great Lakes Woodworking
Mid to high end Millwork facility specializing in Store fixtures and Architectural millwork, full cycle finishing facility with automated spray equipment and color matching. Engineering, development and manufacture of prototype and production-run fixtures and fixture components. Warehousing, i
HomeKeukens
Ervaar het gemak van thuis uw keuken uitzoeken. Met meer dan 12,5 jaar ervaring is HomeKeukens marktleider in keukenadvies aan huis. Persoonlijk keukenadvies in uw eigen thuisomgeving was nog nooit zo makkelijk. Onze adviseurs nemen alle materialen mee waardoor u direct de juiste keuzes kunt maken.
IFR - Interior Furniture Resources
Interior Furniture Resources (IFR) is fully equipped to handle all of your furniture needs. We sell furnishings for every room in your home from the nation’s leading manufacturers. We set up turn-key corporate housing with our quality rental furnishings, electronics and housewares. We provide attrac
.png)
FMU CyberSecurity News
July 23, 2025 11:21 AM
Furniture Mart/Ashley furniture store planned for Ames
A new furniture store is expected to open in Ames this fall, filling a gap in the market that has existed for more than a decade. A Furniture Mart/Ashley...
July 16, 2024 07:00 AM
Furniture giant shuts down manufacturing facilities after ransomware attack
One of the largest furniture companies in the U.S. was forced to shut down its manufacturing facilities following a ransomware attack that...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
FMU CyberSecurity History Information
Official Website of Furniture Mart USA
The official website of Furniture Mart USA is https://furnituremartusa.com/.
Furniture Mart USA’s AI-Generated Cybersecurity Score
According to Rankiteo, Furniture Mart USA’s AI-generated cybersecurity score is 667, reflecting their Weak security posture.
How many security badges does Furniture Mart USA’ have ?
According to Rankiteo, Furniture Mart USA currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Does Furniture Mart USA have SOC 2 Type 1 certification ?
According to Rankiteo, Furniture Mart USA is not certified under SOC 2 Type 1.
Does Furniture Mart USA have SOC 2 Type 2 certification ?
According to Rankiteo, Furniture Mart USA does not hold a SOC 2 Type 2 certification.
Does Furniture Mart USA comply with GDPR ?
According to Rankiteo, Furniture Mart USA is not listed as GDPR compliant.
Does Furniture Mart USA have PCI DSS certification ?
According to Rankiteo, Furniture Mart USA does not currently maintain PCI DSS compliance.
Does Furniture Mart USA comply with HIPAA ?
According to Rankiteo, Furniture Mart USA is not compliant with HIPAA regulations.
Does Furniture Mart USA have ISO 27001 certification ?
According to Rankiteo,Furniture Mart USA is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Furniture Mart USA
Furniture Mart USA operates primarily in the Furniture and Home Furnishings Manufacturing industry.
Number of Employees at Furniture Mart USA
Furniture Mart USA employs approximately 419 people worldwide.
Subsidiaries Owned by Furniture Mart USA
Furniture Mart USA presently has no subsidiaries across any sectors.
Furniture Mart USA’s LinkedIn Followers
Furniture Mart USA’s official LinkedIn profile has approximately 13,992 followers.
NAICS Classification of Furniture Mart USA
Furniture Mart USA is classified under the NAICS code 337, which corresponds to Furniture and Related Product Manufacturing.
Furniture Mart USA’s Presence on Crunchbase
No, Furniture Mart USA does not have a profile on Crunchbase.
Furniture Mart USA’s Presence on LinkedIn
Yes, Furniture Mart USA maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/furnituremartusa.
Cybersecurity Incidents Involving Furniture Mart USA
As of November 28, 2025, Rankiteo reports that Furniture Mart USA has experienced 2 cybersecurity incidents.
Number of Peer and Competitor Companies
Furniture Mart USA has an estimated 2,617 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Furniture Mart USA ?
Incident Types: The types of cybersecurity incidents that have occurred include Breach.
Incident Details
Can you provide details on each incident ?
Title: Data Breach at Furniture Mart, USA
Description: The Maine Attorney General's Office reported a data breach involving Furniture Mart, USA on January 24, 2025. The breach occurred on November 3, 2024, when an unknown actor viewed and copied personal information of approximately two Maine residents, including names, Social Security numbers, and driver's license numbers. Furniture Mart is providing credit monitoring services for twelve months to the affected individuals.
Date Detected: 2025-01-24
Date Publicly Disclosed: 2025-01-24
Type: Data Breach
Threat Actor: Unknown
Title: Data Breach at Furniture Mart USA
Description: The South Dakota Attorney General's Office reported a data breach involving Furniture Mart USA on January 24, 2025. The breach occurred on November 3, 2024, when an unknown actor viewed and copied certain files containing personal information, including names and additional unspecified data. The number of affected individuals is currently unknown.
Date Detected: 2024-11-03
Date Publicly Disclosed: 2025-01-24
Type: Data Breach
Threat Actor: Unknown
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Breach.
Impact of the Incidents
What was the impact of each incident ?
Incident : Data Breach FUR754072525
Data Compromised: Names, Social security numbers, Driver's license numbers
Incident : Data Breach FUR702072925
Data Compromised: Names, Additional unspecified data
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Names, Social Security Numbers, Driver'S License Numbers, , Names, Additional Unspecified Data and .
Which entities were affected by each incident ?
Incident : Data Breach FUR754072525
Entity Name: Furniture Mart, USA
Entity Type: Retail
Industry: Furniture
Customers Affected: 2
Incident : Data Breach FUR702072925
Entity Name: Furniture Mart USA
Entity Type: Retail
Industry: Furniture
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach FUR754072525
Type of Data Compromised: Names, Social security numbers, Driver's license numbers
Number of Records Exposed: 2
Sensitivity of Data: High
Incident : Data Breach FUR702072925
Type of Data Compromised: Names, Additional unspecified data
References
Where can I find more information about each incident ?
Incident : Data Breach FUR702072925
Source: South Dakota Attorney General's Office
Date Accessed: 2025-01-24
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: Maine Attorney General's OfficeDate Accessed: 2025-01-24, and Source: South Dakota Attorney General's OfficeDate Accessed: 2025-01-24.
Additional Questions
General Information
Who was the attacking group in the last incident ?
Last Attacking Group: The attacking group in the last incident were an Unknown and Unknown.
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on 2025-01-24.
What was the most recent incident publicly disclosed ?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2025-01-24.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were Names, Social Security numbers, Driver's license numbers, , Names, Additional unspecified data and .
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were Social Security numbers, Driver's license numbers, Names and Additional unspecified data.
What was the number of records exposed in the most significant breach ?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 2.0.
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident are Maine Attorney General's Office and South Dakota Attorney General's Office.
.png)
Latest Global CVEs (Not Company-Specific)
Description
ThingsBoard in versions prior to v4.2.1 allows an authenticated user to upload malicious SVG images via the "Image Gallery", leading to a Stored Cross-Site Scripting (XSS) vulnerability. The exploit can be triggered when any user accesses the public API endpoint of the malicious SVG images, or if the malicious images are embedded in an `iframe` element, during a widget creation, deployed to any page of the platform (e.g., dashboards), and accessed during normal operations. The vulnerability resides in the `ImageController`, which fails to restrict the execution of JavaScript code when an image is loaded by the user's browser. This vulnerability can lead to the execution of malicious code in the context of other users' sessions, potentially compromising their accounts and allowing unauthorized actions.
Risk Information
cvss4
Base: 6.2
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:N/VI:N/VA:N/SC:H/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12 fail to to verify that the token used during the code exchange originates from the same authentication flow, which allows an authenticated user to perform account takeover via a specially crafted email address used when switching authentication methods and sending a request to the /users/login/sso/code-exchange endpoint. The vulnerability requires ExperimentalEnableAuthenticationTransfer to be enabled (default: enabled) and RequireEmailVerification to be disabled (default: disabled).
Risk Information
cvss3
Base: 9.9
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
References
Description
Mattermost versions 11.0.x <= 11.0.2, 10.12.x <= 10.12.1, 10.11.x <= 10.11.4, 10.5.x <= 10.5.12 fail to sanitize team email addresses to be visible only to Team Admins, which allows any authenticated user to view team email addresses via the GET /api/v4/channels/{channel_id}/common_teams endpoint
Risk Information
cvss3
Base: 4.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
References
Description
Exposure of email service credentials to users without administrative rights in Devolutions Server.This issue affects Devolutions Server: before 2025.2.21, before 2025.3.9.
Description
Exposure of credentials in unintended requests in Devolutions Server.This issue affects Server: through 2025.2.20, through 2025.3.8.
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=furnituremartusa' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
