Italian supercar manufacturer Ferrari has confirmed it was hit by a ransomware assault that uncovered customers’ particular information.
“We regret to notify you of a cyber incident at Ferrari, the place a threat actor was ready to access a confined amount of devices in our IT setting,” Ferrari CEO Benedetto Vigna explained in a letter sent to affected buyers.
The carmaker claimed that hackers accessed customers’ names, addresses, e-mail addresses and telephone figures. Dependent on its investigation so significantly, Ferrari explained no payment information and facts or particulars of Ferrari vehicles owned or requested had been stolen, while it really is not crystal clear if the carmaker has the technological ability, these kinds of as logs, to detect data exfiltration.
“We can also confirm the breach has experienced no impression on the operational functions of our enterprise,” Ferrari explained in a separate assertion.
Ferrari will not say how numerous shoppers are impacted by the breach or how or when the enterprise was compromised. The carmaker has not responded to TechCrunch’s questions.
It is really unclear if the breach is linked to an October incident that observed a ransomware team known as “RansomEXX” declare to have breached the carmaker, which Ferrari at the time denied. A listing on the RansomEXX web-site, seen by TechCrunch, lists seven gigabytes of knowledge allegedly stolen from Ferrari, which include internal files, knowledge sheets and fix manuals.
Ferrari’s CEO claimed that the company has not paid out the unnamed hackers’ ransom need, expressing that carrying out so “does not essentially alter the data exposure.”
Ferrari said that just after acquiring the ransom desire, the volume of which stays not known, it started an investigation with a third-celebration cybersecurity business.