Fincantieri Marine Group (FMG), the U.S. arm of Italian shipbuilding firm Fincantieri and a contractor for the U.S. Navy, revealed a data breach affecting 16,769 individuals in the aftermath of an April ransomware attack. The cyber incident, resulting in significant disruptions to production, was reported by cybersecurity firm Recorded Future through their news site, The Record.
In breach notification letters sent to affected individuals this month, FMG disclosed that threat actors infiltrated some of its systems between April 6 and April 12. The attackers exfiltrated files containing personal data, including names and Social Security numbers. The United States Naval Institute, promptly informed by FMG, previously highlighted that servers associated with crucial shipbuilding processes, such as cutting and welding, were taken offline in response to the attack.
This revelation follows a separate cyberattack on fellow U.S. Navy shipbuilder Austal, a month earlier, which has since been attributed to a ransomware operation. FMG’s disclosure underscores the ongoing challenges faced by contractors associated with critical military infrastructure in the face of escalating cyber threats.