21 March 2023

Ferrari discloses data breach, refuses to pay ransom demand


Ferrari discloses data breach, refuses to pay ransom demand

Italian luxury sports car maker Ferrari revealed it has suffered a data breach after it received a ransom demand from threat actors who compromised the company’s IT systems.

In a short statement regarding the incident Ferrari said that according to the company’s policy it “will not be held to ransom as paying such demands funds criminal activity and enables threat actors to perpetuate their attacks.”

The automaker said it has launched an investigation into the matter and informed “customers of the potential data exposure and the nature of the incident.”

In a letter sent to affected clients the company explained that a threat actor gained access to a limited number of its IT systems and some customer data, including names, addresses, email addresses, and phone numbers.

Ferrari says it found no evidence that sensitive payment details or information on Ferrari cars owned or ordered have been stolen in the attack.

It’s unclear if the recent hack is related to an October 2022 incident that saw a ransomware group known as “RansomEXX” claim to have breached the carmaker. More than 7GB of allegedly Ferrari internal documents were posted to the gang’s victim blog, including data sheets and repair modules.


Back to the list

Latest Posts

Cyber security week in review: May 26, 2023

Cyber security week in review: May 26, 2023

The world in brief: New ICS malware discovered, hacktivists expose Russian hacker wanted in the US, Pegasus spyware found in Armenia and Azerbaijan, and more.
26 May 2023
Barracuda’s email gateway appliances breached via zero-day bug

Barracuda’s email gateway appliances breached via zero-day bug

The vulnerability resided in a module which initially screens the attachments of incoming emails.
25 May 2023
Chinese hackers target critical infrastructure in the US

Chinese hackers target critical infrastructure in the US

In a separate campaign China-linked hackers spied on the Kenyan government to obtain information on debts owed to Beijing.
25 May 2023