‘Ransom’ for ‘Customer Data’ Following Second Ferrari Cyberattack in Six Months
Italian supercar maker Ferrari is currently navigating yet another cyberattack targeting customer information. Reports indicate “threat actors” gained access to Ferrari’s “customer data,” and are consequently holding it until a “ransom demand” is fulfilled. Although computer-based crimes against automakers are rising, the company is no stranger to cybersecurity failures. It’s the second Ferrari cyberattack in just six months, but the manufacturer is continuing with normal operations amid the internal turmoil.
‘Threat actor’ demands ‘ransom’ from Ferrari for ‘customer data’
In a statement, Ferrari announced the “cyber incident” on March 20, 2023. The Maranello-based firm said the attack involved “certain client contact details.” Ferrari didn’t explain what customer details were exposed, but many reports show they include general contact information like names, physical addresses, email addresses, and telephone numbers.
Ferrari said the breach had no impact on the company’s operations. It notified customers of the potential data exposure and the nature of the incident.
Who is to blame for the Ferrari cyberattack?
No group has come forward to claim responsibility for the incident. However, it does look similar to another Ferrari cyberattack. On October 3, 2022, RansomEXX claimed that have stolen 7 gigabytes of data from the company.
Silicon Angle reports that the group was able to release internal company documents, as well as technical manuals. Interestingly enough, the first Ferrari cyberattack took place just a few days after Ferrari’s Formula 1 division announced a partnership with Bitdefender.
How is the Ferrari cyberattack being handled?
Typically, ransomware attacks involve locking information on a company’s network until a sum is paid. Fortunately, as mentioned before, the incident hasn’t affected operations or production. Yet, considering the people who buy Ferrari products, it could have damaging effects on the company’s reputation. But Jalopnik reports that the most recent breach included no financial information, payment information, or details about owned or ordered customer vehicles. Although ransom figures are uncertain, what is certain is Ferrari’s refusal to pay. The company explains that paying the ransom would only invite further incidents.
“As a policy, Ferrari will not be held to ransom as paying such demands funds criminal activity and enables threat actors to perpetuate their attacks,” the company added. “Ferrari takes the confidentiality of our clients very seriously and understands the significance of this incident.”
Ferrari has launched an investigation in collaboration with a “leading global third-party cybersecurity firm.” The company asserts it is “confident they will investigate to the full extent of the law.”