Ferrari has disclosed a data breach following a ransom demand received after attackers gained access to some of the company’s IT systems.
“We regret to inform you of a cyber incident at Ferrari, where a threat actor was able to access a limited number of systems in our IT environment,” Ferrari says in breach notification letters sent to customers.
Ferrari is yet to find evidence that payment details, bank account numbers, or other sensitive payment information was accessed or stolen.
“Ferrari N.V. announces that Ferrari S.p.A., its wholly-owned Italian subsidiary, was recently contacted by a threat actor with a ransom demand related to certain client contact details,” the company said in a statement.
After discovering the breach, Ferrari also reported the attack to relevant authorities and is working with a cybersecurity company to investigate the scope of the impact.
“As a policy, Ferrari will not be held to ransom as paying such demands funds criminal activity and enables threat actors to perpetuate their attacks,” the company added.