On March 20th, Ferrari announced they were victims of a cyberattack that could result in customers` data leakage. Threat actors claimed to have breached some of the Ferrari IT systems and sent a ransom demand.

Ferrari N.V. announces that Ferrari S.p.A., its wholly-owned Italian subsidiary, was recently contacted by a threat actor with a ransom demand related to certain client contact details.

Upon receipt of the ransom demand, we immediately started an investigation in collaboration with a leading global third-party cybersecurity firm.


The Stolen Data and Further Risks

According to the luxury sports cars company, the data breach only revealed information like names, addresses, email addresses, and telephone numbers.

At the moment, there is no evidence that hackers managed to access or steal sensitive payment details, like bank account numbers. In addition, Ferrari announced the data breach did not impact the operational functions of the company.

However, threat actors can successfully leverage the stolen data for launching a phishing attack.

What Next

After the incident, Ferrari swiftly informed the customers of the potential data leakage, took the necessary measures and secured the compromised systems.

They also launched an investigation into the cyberattack. The authorities and a cybersecurity firm are collaborating to find out what happened and limit the damage.

Further on, the company does not intend to pay the ransom, since it considers this would only encourage and support future criminal activities.

As a policy, Ferrari will not be held to ransom as paying such demands funds criminal activity and enables threat actors to perpetuate their attacks.

Instead, we believed the best course of action was to inform our clients and thus we have notified our customers of the potential data exposure and the nature of the incident.


This is not the first time Ferrari suffers a data breach. In October 2022, the RansomEXX ransomware group succeeded to steal 7 GB of data from the company`s website and post it on the dark web.

And if you liked this article, follow us on LinkedInTwitterFacebook, and YouTube for more cybersecurity news and topics.

Heimdal Official Logo
Neutralize ransomware before it can hit.

Heimdal™ Ransomware Encryption Protection

Specifically engineered to counter the number one security risk to any business – ransomware.
  • Blocks any unauthorized encryption attempts;
  • Detects ransomware regardless of signature;
  • Universal compatibility with any cybersecurity solution;
  • Full audit trail with stunning graphics;
Try it for FREE today 30-day Free Trial. Offer valid only for companies.

Locking Out Cybercriminals: Here’s How to Prevent Ransomware Attacks

What Is Targeted Ransomware and How Does It Work

Ferrari Targeted by Ransomware Attack

How to Mitigate Ransomware?

What Is Data Leakage?

What Is Email Security?

What Is a Data Breach and How to Prevent It

Phishing attacks explained: How it works, Types, Prevention and Statistics

Leave a Reply

Your email address will not be published. Required fields are marked *