Ferrari disclosed a data breach following a ransom demand received after attackers gained access to some of the company’s computer systems.

“We regret to inform you of a cyber incident at Ferrari, where a malicious actor was able to gain access to a limited number of systems in our IT environment,” Ferrari said in breach notification letters sent to customers.

The Italian luxury sports car maker says customer information exposed in the incident includes names, addresses, email addresses and phone numbers.

So far, Ferrari has yet to find any evidence that payment details, bank account numbers or other sensitive payment information has been accessed or stolen.

“Ferrari NV announces that Ferrari SpA, its wholly owned Italian subsidiary, was recently contacted by a malicious actor with a ransom demand linked to certain customer contact details,” the company said. said in a press release.

“Upon receipt of the ransom note, we immediately launched an investigation in conjunction with a leading global third-party cybersecurity company.”

Ferrari Infringement Notification Letter
Ferrari Infringement Notification Letter (Trojan Hunt)

No impact on Ferrari operations

Ferrari has taken steps to secure the compromised systems and says the attack had no impact on the company’s operations.

After discovering the breach, Ferrari also reported the attack to the relevant authorities and is working with a cybersecurity company to investigate the extent of the impact.

“As a policy, Ferrari will not be required to pay a ransom because paying such demands funds criminal activity and enables threat actors to perpetuate their attacks,” the company added.

“Instead, we felt the best course of action was to inform our customers and so we informed our customers of the potential data exposure and the nature of the incident.”

A Ferrari spokesperson was not immediately available for comment when contacted by BleepingComputer earlier today.

Source link