The amount of information subtracted is about seven gigabytes. According to the cybercriminals, these contain "internal documents and data, repair manuals and more". On the underground forum the data is freely downloadable.
At the moment there are no official communications from Ferrari.
Twitter content This content can also be viewed on the site it originates from.
RansomEXX is a cybergang that began making a name for itself in mid-2020, attacking several government agencies and other high-profile targets. In 2021 it attacked the Lazio region. It is also not the first time that Ferrari's data has ended up published online: last spring, another cyber gang known as Everest had put data from Speroni, a manufacturer of measuring instruments, up for sale. Among the stolen documents were some relating to some large Italian car manufacturers, including Ferrari.
Twitter content This content can also be viewed on the site it originates from.
The best way to defend against ransomware - attacks aimed at encrypting organizations' data and then demanding a ransom - is use a backup and recovery plan for all critical information. If possible, it is advisable to keep critical backups not connected to the network, so that they cannot be infected with the ransomware. It is also essential to maximize the awareness of employees and collaborators with respect to IT security practices.
Update 3/10 2.36 pm: It is not excluded that the attack may have been aimed at a third party supplier and not at Ferrari, as reported by the specialized website CyberSecurity 360. “The scenario would change substantially but the impact the theft of data, if in any case related to the car company of the prancing horse, would still remain high. " We will update the article as soon as we become aware of further developments.