Security News > 2023 > March > Ferrari data breach: Client data exposed
Italian luxury sports car maker Ferrari has suffered a data breach and has confirmed on Monday that it "Was recently contacted by a threat actor with a ransom demand related to certain client contact details," but that it won't be paying up.
"We can also confirm the breach has had no impact on the operational functions of our company," claims the client communication sent to potentially affected customers and signed by Ferrari CEO Benedetto Vigna.
Unnamed attackers have managed to access a limited number of systems in the company's IT environment, and certain client data - including names, addresses, email addresses and telephone numbers - was exposed, Vigna shared.
Apparently, Ferrari became aware of the breach only after receiving the ransom demand.
It is unknown whether this "Cyber incident" is related to a previous alleged attack by the RansomEXX ransomware gang, which resulted in 7GB of data - including internal Ferrari documents, datasheets, repair manuals, and more - being leaked online.
The exposed personal and direct contact information could be used by these or other attackers to mount spear-phishing attacks, so Ferrari customers should be extra careful when reviewing emails and answering the phone from now on.
News URL
https://www.helpnetsecurity.com/2023/03/21/ferrari-data-breach-client-data-exposed/
Related news
- Free, France’s second largest ISP, confirms data breach after leak (source)
- Interbank confirms data breach following failed extortion, data leak (source)
- How to Effectively Manage a Data Breach (source)
- Amazon confirms employee data breach after vendor hack (source)
- HIBP notifies 57 million people of Hot Topic data breach (source)
- US space tech giant Maxar discloses employee data breach (source)
- Fintech giant Finastra investigates data breach after SFTP hack (source)
- Bologna FC confirms data breach after RansomHub ransomware attack (source)
- Rhode Island confirms data breach after Brain Cipher ransomware attack (source)
- Texas Tech University System data breach impacts 1.4 million patients (source)