clop attacks CAP Carpet & Flooring, Inc.

Incident Date:

March 2, 2022

World map



clop attacks CAP Carpet & Flooring, Inc.


CAP Carpet & Flooring, Inc.




New Brighton, USA

Minnesota, USA

First Reported

March 2, 2022

CAP Carpet & Flooring, Inc. Suffers Ransomware Attack

CAP Carpet & Flooring, Inc., a retailer based in New Brighton, MN, has fallen victim to a ransomware attack orchestrated by the Clop ransomware group. The incident was disclosed on the group's dark web leak site. Established in 1967, CAP Carpet & Flooring is a second-generation, family-owned business with a significant footprint in the national flooring industry.

The company's diverse product range, showcased on their website, caters to various settings including residential homes, healthcare facilities, offices, and private jets. This broad market reach underscores the company's prominence within the flooring sector.

The Growing Cybersecurity Threat in the Flooring Industry

The ransomware attack on CAP Carpet & Flooring underscores a broader trend of increasing cyber threats within the flooring industry. As businesses in this sector continue to integrate digital systems for inventory management, sales processes, and customer data storage, they inadvertently expand their vulnerability to cybercriminal activities. The repercussions of such attacks are multifaceted, potentially causing operational disruptions and compromising sensitive customer information.

Although specific vulnerabilities exploited in the attack on CAP Carpet & Flooring were not disclosed, it is known that flooring dealers, by nature of their business, collect and store substantial amounts of sensitive customer data. This information becomes a prime target for cybercriminals engaging in identity theft, financial fraud, or further ransomware attacks.

The incident with CAP Carpet & Flooring is indicative of a larger pattern of cyber theft and fraud within the industry, exacerbated by the digital evolution of business operations. It highlights the imperative for flooring retailers to adopt comprehensive cybersecurity measures to protect their digital infrastructure and sensitive data against potential threats.


Recent Ransomware Attacks

The Recent Ransomware Attacks (RRA) site acts as a watchtower, providing you with near real-time ransomware tracking of attacks, groups and their victims. Given threat actors’ overarching, lucrative success so far, ransomware attacks have become the most ubiquitous, and financially and informationally impactful cyber threat to businesses and organizations today.

The site’s data is generated based on hosting choices of real-world threat actors, and a handful of other trackers. While sanitization efforts have been taken, we cannot guarantee 100% accuracy of the data. Attack updates will be made as source data is reported by reputable sources. By viewing, accessing, or using RRA you acknowledge you are doing so at your own risk.