Ferrari Grapples with Ransomware Attack as Customer Data Compromised

Luxury Italian automaker Ferrari is confronting ransom demands as cybercriminals target sensitive client information.

Ferrari recently disclosed a significant data breach after falling victim to a ransomware attack that compromised sensitive customer information.

In the official statement shared by the carmaker, the company “was recently contacted by a threat actor with a ransom demand related to certain client contact details.”

The carmaker immediately contacted the federal authorities and is working with them for further investigation into the matter.

Bleeping Computer reported that the cyberattack on Ferrari has exposed clients’ names, email addresses, and other sensitive data.

In a response to the ransomware, the Italian carmaker has made its stance clear and stated that “Ferrari will not be held to ransom as paying such demands funds criminal activity and enables threat actors to perpetuate their attacks.”

The company has instead chosen to inform the clients of a “potential data exposure and the nature of the incident” for complete transparency.

To keep the customers and investors calm, Ferrari Chief Executive Officer Benedetto Vigna spoke to Bloomberg News to confirm that certain data was exposed, but it does not include crucial payment details.

Vigna said that “no payment details, bank account numbers, or details of Ferrari cars owned or ordered were stolen, and the breach has had no impact on the operations of the carmaker.”

It is unclear when the incident took place, but it may be linked to a ransomware attack that was reported in October 2022.

During the attack, The Record reported that a hacker group called “RansomEXX” claimed that they had taken and released 7 GB of information from Ferrari.

The carmaker refuted this claim by stating that “Ferrari has no evidence of a breach of its systems or ransomware and informs there has been no disruption to our business and operations.”