Ferrari confirms customer data breach after a ransomware attack. The automaking company has now confirmed the exposure of customer data in a reported breach.
Ferrari Confirms Customer Data Breach After Ransomware Attack
Italian luxury sportscar maker Ferrari just suffered a ransomware attack that saw sensitive user data stolen.
A press release that was recently published on the website of Ferrari as well as an email sent to affected customers by the company, confirmed that following up with a cyber-incident, the Ferrari Italian subsidiary was contacted by the attackers thus demanding that the ransom demand be fully paid.
Ferraris Press Release in Regards to the Incident
“Upon receipt of the ransom demand, we immediately started an investigation in collaboration with a leading global third-party cybersecurity firm. In addition, we informed the relevant authorities and are confident they will investigate to the full extent of the law,” the company noted in the press release.
Ferrari elsewhere in the release said that it would not be making any form of payments as that would only get to motivate the attackers further, as well as provide them with money to carry out additional attacks.
“Instead, we believed the best course of action was to inform our clients and thus we have notified our customers of the potential data exposure and the nature of the incident,” it stated.
Ferraris Notification to Affected Customers
And in the notification sent to customers of Ferrari, the company stated that a threat actor “was able to access a limited number of systems in our IT environment.” The data reportedly taken by the hackers include sensitive information such as names, postal addresses, email addresses, as well as telephone numbers. Payment details, bank account numbers, or other forms of sensitive payment information are most likely to be safe, as there is no evidence (so far) that they’ve been taken, as well.
Ferrari however concluded the notification by stating that the attack did not impact its operations in any way.
Other Notable Details of the Attack
And while the move by the company is commendable, there are some details that have been left out such as the name of the attackers behind the incident, and whether or not this has got anything to do with the most recent GoAnywhere MFT fiasco. The company furthermore did not say how much the threat actors are demanding in exchange for the stolen data.
MORE RELATED POSTS
