“In regard to the ‘pay or don’t pay’ debate, it’s very simple from my perspective,” Ben-Noon said. He said while there’s not yet evidence of any payment information being compromised, Ferrari has many high-net-worth individuals as customers, making the information extremely valuable for bad actors. With so much data moving back and forth and so many users connecting from different locations and devices, there are bound to be blind spots for attackers to exploit.” Do threat actors target companies with wealthy clients?īen-Noon said the attack proves that the threat actors go after people with money. “This is all on top of having to secure the actual cars. “Think about it … these organizations have their traditional corporate employees, employees at dealerships and up-and-down the supply chain, contractors that have access to systems, and more users that they need to protect,” said Ben-Noon.
Ben-Noon said the sheer complexity of the environments in the automotive sector creates massive attack surfaces. Ofer Ben-Noon, co-founder and CEO of Talon Cyber Security, explained that the security teams of carmakers have incredibly difficult jobs. They also informed the relevant authorities and an investigation is under way.
The company said once it received the ransom demand, it immediately started an investigation in collaboration with a leading global third-party cybersecurity firm and have confirmed the data’s authenticity. They also said the breach had no impact on the company’s operations.įerrari said in a statement that it will not pay the ransom: “As a policy, Ferrari will not be held to ransom, as paying such demands funds criminal activity and enables threat actors to perpetuate their attacks.” In a letter to customers - called the Ferrarista - the company was adamant that no payment details and/or bank account numbers or other sensitive payment information, nor details of Ferrari cars owned or ordered had been stolen. Italian sports car maker Ferrari confirmed Monday that it was hit with a ransomware extortion attempt by an unknown threat actor in which customer names, addresses, email addresses, and telephone numbers were exposed.
0 kommentar(er)
