Ferrara
Company Details
Linkedin ID:
ferrara-
Website:
Employees number:
2,064
Number of followers:
74,795
NAICS:
30
Industry Type:
Homepage:
ferrara.com
IP Addresses:
0
Company ID:
FER_2852491
Scan Status:
In-progress
Ferrara Company CyberSecurity Posture
ferrara.com
We are Ferrara, an undisputed leader in sugar confections. Ferrara is #1 in the category in the US with ambitions of being the global leader by leveraging our focus, capabilities, and brand portfolio to drive category development for our community, customer, and consumers. Our diverse portfolio of two dozen brands includes SweeTARTS®, Trolli®, BRACH'S®, Black Forest® and NERDS®, along with iconic favorites like Lemonhead®, Red Hots® and Now and Later®. Headquartered in Chicago, Ferrara has over 4,000 dedicated employees and an operational network of over a dozen locations in North America that includes manufacturing, distribution, and R&D facilities.
Ferrara A.I CyberSecurity Scoring
Ferrara Risk Score (AI oriented)Between 650 and 699
Ferrara
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
Ferrara Global Score (TPRM)XXXX
Ferrara
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
Ferrara Company CyberSecurity News & History
Past Incidents
2
Attack Types
2
Ferrara Candy
Ransomware
Rankiteo Explanation
Attack limited on finance or reputation
Description: Ferrara Candy, the manufacturer of popular confectionery brands like Nerds, Laffy Taffy, and SweetTarts, suffered a ransomware attack on October 9, just weeks before Halloween a peak sales period. The attack disrupted production across its manufacturing facilities, leading to operational halts and a backlog of unfulfilled orders. While the company has since resumed operations, the incident caused temporary delays in supply chains, though Ferrara claims no significant consumer impact is expected.The attackers' identity, ransom amount, and whether payment was made remain undisclosed. The timing of the attack targeting a critical seasonal period suggests a deliberate strategy to maximize pressure on the victim. Ransomware groups often exploit such high-stakes moments to coerce swift payments, leveraging the urgency of business continuity. Ferrara’s recovery efforts are ongoing, but the incident highlights vulnerabilities in industrial sectors reliant on just-in-time production, particularly during demand surges.
Ferrara Candy Company
Breach
Rankiteo Explanation
Attack with significant impact with internal employee data leaks
Description: The Maine Office of the Attorney General reported that Ferrara Candy Company experienced a data breach involving unauthorized access to its network between October 2, 2021 and October 9, 2021, affecting 8,359 individuals in total, including one Maine resident. The compromised information included names and Social Security numbers. Notification to impacted individuals was provided in writing on April 29, 2022, and identity theft protection services were offered for twelve months through Equifax.
Ferrara Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for Ferrara
Incidents vs Manufacturing Industry Average (This Year)
No incidents recorded for Ferrara in 2026.
Incidents vs All-Companies Average (This Year)
No incidents recorded for Ferrara in 2026.
Incident Types Ferrara vs Manufacturing Industry Avg (This Year)
No incidents recorded for Ferrara in 2026.
Incident History — Ferrara (X = Date, Y = Severity)
Ferrara cyber incidents detection timeline including parent company and subsidiaries
Ferrara Company Subsidiaries
We are Ferrara, an undisputed leader in sugar confections. Ferrara is #1 in the category in the US with ambitions of being the global leader by leveraging our focus, capabilities, and brand portfolio to drive category development for our community, customer, and consumers. Our diverse portfolio of two dozen brands includes SweeTARTS®, Trolli®, BRACH'S®, Black Forest® and NERDS®, along with iconic favorites like Lemonhead®, Red Hots® and Now and Later®. Headquartered in Chicago, Ferrara has over 4,000 dedicated employees and an operational network of over a dozen locations in North America that includes manufacturing, distribution, and R&D facilities.
Loading...
Ferrara Similar Companies
Newell Brands
Newell Brands (NASDAQ: NWL) is a leading global consumer goods company with a strong portfolio of well-known brands, including Rubbermaid, Sharpie, Graco, Coleman, Rubbermaid Commercial Products, Yankee Candle, Paper Mate, FoodSaver, Dymo, EXPO, Elmer’s, Oster, NUK, Spontex and Campingaz. We are f
Whirlpool Corporation
Life at home has been at the heart of our business for 110+ years - it is why we exist and why we are passionate about what we do. Beginning with our founders to the everyday actions of our people, our values have always kept us grounded -- Integrity, Respect, Inclusion & Diversity, One Whirlpool, S
SC Johnson
We’re SC Johnson, a family company at work for a better world™. We are a leading manufacturer of household cleaning products and products for home storage, air care, pest control, shoe care and professional products. SC Johnson’s high-quality products and iconic brands include OFF!®, Raid®, Glade®,
Patanjali Foods
For almost four decades, Patanjali Foods has championed India’s wellness revolution. Founded in 1986, we began with a simple mission: making swadeshi products, affordable and quality-driven for every household. Today, we are a leading FMCG force, offering a wide range of household essentials. From n
Kimberly-Clark
As a Kimberly-Clark employee, you have an opportunity to impact billions of lives through the products we make, the workplaces we create and the communities we serve. The proof is in our purpose – Here, we are creating Better Care for a Better World and it starts with YOU! Learn more about us and se
Alpargatas S.A.
We are a global company, founded and based in Brazil for over 115 years. We are committed to delight the world with amazing brands, that convey lightness and joy to the everyday lives of our consumers. We own Havaianas brand, world leader in open shoes, known for the iconic flip-flops that represent
Electrolux Group
Electrolux Group is a leading global appliance company that has shaped living for the better for more than 100 years. We reinvent taste, care and wellbeing experiences for millions of people, always striving to be at the forefront of sustainability in society through our solutions and operations. Un
We are EssilorLuxottica, a global leader in the design, manufacture and distribution of advanced vision care products, eyewear and med-tech solutions. Our Mission is to help people around the world to see more and be more by addressing their evolving vision needs, personal style aspirations and desi
Essity
Essity - a globally leading hygiene and health company. Our expertise in hygiene and health began with the acquisition of the Swedish company Mölnlycke in 1975, through which our roots stretch back to 1849. Today, our sustainable innovations from globally trusted brands, designed for everybody and e
.png)
Ferrara CyberSecurity News
July 23, 2025 07:00 AM
Jannik Sinner rehires Umberto Ferrara, the fitness coach he fired for his role in doping case
The move comes after Sinner recently removed fitness coach Marco Panichi and physiotherapist Ulises Badio from his team.
July 23, 2025 07:00 AM
Tennis: Jannik Sinner re-appoints former fitness coach, a year after doping ban
Tennis News: Jannik Sinner has rehired Umberto Ferrara as his fitness coach, reversing his decision to dismiss him following a doping case...
May 20, 2025 07:00 AM
Kettering Health cyberattack shuts down all systems, patients receiving scam calls
Kettering Health patients are receiving scam calls following a cyberattack that has taken its systems offline.
May 02, 2025 07:00 AM
The 2025 Lawdragon 500 Leading Global Cyber Lawyers
Honorees include Jane Horvath of Gibson Dunn, Jennifer Everett of Alston & Bird and Alex Berengaut of Covington.
November 20, 2024 08:00 AM
Behind the Buyouts: Capstone's Ferrara on M&A Rebound
Founder John Ferrara dives into the middle market investment bank's growth over two decades and his expectations for dealmaking in 2025.
October 31, 2024 07:00 AM
Election night watch party; USC experts available
Reporters are invited to join USC's 2024 Presidential Election Night Watch Party for live analysis and expert insights.
August 02, 2024 07:00 AM
Security Journey Names Dan Newton as New CEO to Drive Innovation and Global Growth
Security Journey, a platform dedicated to secure coding education, has appointed Dan Newton as its new CEO. Newton will focus on driving...
June 20, 2024 07:00 AM
Avaneidi secures €8M to enhance SSD endurance, security
Italian startup Avaneidi has received €8 million ($8.6 million) in Series A funding, and is planning to use this to extend SSD endurance by 1.9x, increase...
October 09, 2023 07:00 AM
Alvarez & Marsal hires Lawrence Ferrara as chief learning officer for M&A group
A&M, a global management consultancy, has hired Lawrence Ferrara as senior director and chief learning officer of its global transaction advisory group (TAG).
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
Ferrara CyberSecurity History Information
Official Website of Ferrara
The official website of Ferrara is http://www.ferrarausa.com.
Ferrara’s AI-Generated Cybersecurity Score
According to Rankiteo, Ferrara’s AI-generated cybersecurity score is 654, reflecting their Weak security posture.
How many security badges does Ferrara’ have ?
According to Rankiteo, Ferrara currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Has Ferrara been affected by any supply chain cyber incidents ?
According to Rankiteo, Ferrara has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.
Does Ferrara have SOC 2 Type 1 certification ?
According to Rankiteo, Ferrara is not certified under SOC 2 Type 1.
Does Ferrara have SOC 2 Type 2 certification ?
According to Rankiteo, Ferrara does not hold a SOC 2 Type 2 certification.
Does Ferrara comply with GDPR ?
According to Rankiteo, Ferrara is not listed as GDPR compliant.
Does Ferrara have PCI DSS certification ?
According to Rankiteo, Ferrara does not currently maintain PCI DSS compliance.
Does Ferrara comply with HIPAA ?
According to Rankiteo, Ferrara is not compliant with HIPAA regulations.
Does Ferrara have ISO 27001 certification ?
According to Rankiteo,Ferrara is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of Ferrara
Ferrara operates primarily in the Manufacturing industry.
Number of Employees at Ferrara
Ferrara employs approximately 2,064 people worldwide.
Subsidiaries Owned by Ferrara
Ferrara presently has no subsidiaries across any sectors.
Ferrara’s LinkedIn Followers
Ferrara’s official LinkedIn profile has approximately 74,795 followers.
NAICS Classification of Ferrara
Ferrara is classified under the NAICS code 30, which corresponds to Manufacturing.
Ferrara’s Presence on Crunchbase
No, Ferrara does not have a profile on Crunchbase.
Ferrara’s Presence on LinkedIn
Yes, Ferrara maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/ferrara-.
Cybersecurity Incidents Involving Ferrara
As of January 23, 2026, Rankiteo reports that Ferrara has experienced 2 cybersecurity incidents.
Number of Peer and Competitor Companies
Ferrara has an estimated 7,953 peer or competitor companies worldwide.
What types of cybersecurity incidents have occurred at Ferrara ?
Incident Types: The types of cybersecurity incidents that have occurred include Ransomware and Breach.
How does Ferrara detect and respond to cybersecurity incidents ?
Detection and Response: The company detects and responds to cybersecurity incidents through an third party assistance with equifax, and communication strategy with written notification to impacted individuals, and and remediation measures with resumed production operations, and recovery measures with addressing order backlog..
Incident Details
Can you provide details on each incident ?
Title: Ferrara Candy Company Data Breach
Description: Unauthorized access to Ferrara Candy Company's network resulting in a data breach affecting 8,359 individuals, including one Maine resident.
Date Detected: 2021-10-02
Date Publicly Disclosed: 2022-04-29
Type: Data Breach
Attack Vector: Unauthorized Access
Title: Ransomware Attack on Ferrara Candy Company
Description: Ferrara Candy, the manufacturer of popular candies like Nerds, Laffy Taffy, and SweetTarts, was struck by a ransomware attack on October 9. The attack disrupted production in their manufacturing facilities, causing a backlog of orders. The company has since resumed operations and does not anticipate a significant consumer impact. The ransom amount, payment status, and the responsible threat actor remain undisclosed.
Date Detected: 2023-10-09
Type: ransomware
Motivation: financial gainoperational disruption (timed to maximize pressure during peak season)
What are the most common types of attacks the company has faced ?
Common Attack Types: The most common types of attacks the company has faced is Ransomware.
Impact of the Incidents
What was the impact of each incident ?
Incident : Data Breach FER806072825
Data Compromised: Names, Social security numbers
Incident : ransomware FER0863508090625
Systems Affected: manufacturing facilities
Downtime: True
Operational Impact: production haltorder backlog
What types of data are most commonly compromised in incidents ?
Commonly Compromised Data Types: The types of data most commonly compromised in incidents are Names, Social Security Numbers and .
Which entities were affected by each incident ?
Incident : Data Breach FER806072825
Entity Name: Ferrara Candy Company
Entity Type: Company
Industry: Food and Beverage
Customers Affected: 8359
Incident : ransomware FER0863508090625
Entity Name: Ferrara Candy Company
Entity Type: private
Industry: consumer goods (confectionery)
Location: United States
Response to the Incidents
What measures were taken in response to each incident ?
Incident : Data Breach FER806072825
Third Party Assistance: Equifax.
Communication Strategy: Written notification to impacted individuals
Incident : ransomware FER0863508090625
Incident Response Plan Activated: True
Remediation Measures: resumed production operations
Recovery Measures: addressing order backlog
How does the company involve third-party assistance in incident response ?
Third-Party Assistance: The company involves third-party assistance in incident response through Equifax, .
Data Breach Information
What type of data was compromised in each breach ?
Incident : Data Breach FER806072825
Type of Data Compromised: Names, Social security numbers
Number of Records Exposed: 8359
Sensitivity of Data: High
What measures does the company take to prevent data exfiltration ?
Prevention of Data Exfiltration: The company takes the following measures to prevent data exfiltration: resumed production operations, .
Ransomware Information
Was ransomware involved in any of the incidents ?
Incident : ransomware FER0863508090625
Data Encryption: True
How does the company recover data encrypted by ransomware ?
Data Recovery from Ransomware: The company recovers data encrypted by ransomware through addressing order backlog, .
References
Where can I find more information about each incident ?
Incident : Data Breach FER806072825
Source: Maine Office of the Attorney General
Incident : ransomware FER0863508090625
Source: Acronis Cyber Protect (via article excerpt)
Where can stakeholders find additional resources on cybersecurity best practices ?
Additional Resources: Stakeholders can find additional resources on cybersecurity best practices at and Source: Maine Office of the Attorney General, and Source: Acronis Cyber Protect (via article excerpt).
Investigation Status
What is the current status of the investigation for each incident ?
Incident : ransomware FER0863508090625
Investigation Status: ongoing (ransom details and threat actor undisclosed)
How does the company communicate the status of incident investigations to stakeholders ?
Communication of Investigation Status: The company communicates the status of incident investigations to stakeholders through Written notification to impacted individuals.
Stakeholder and Customer Advisories
Were there any advisories issued to stakeholders or customers for each incident ?
Incident : ransomware FER0863508090625
Customer Advisories: no significant consumer impact expected
What advisories does the company provide to stakeholders and customers following an incident ?
Advisories Provided: The company provides the following advisories to stakeholders and customers following an incident: were No Significant Consumer Impact Expected and .
Initial Access Broker
How did the initial access broker gain entry for each incident ?
Incident : ransomware FER0863508090625
High Value Targets: Manufacturing Systems,
Data Sold on Dark Web: Manufacturing Systems,
Post-Incident Analysis
What is the company's process for conducting post-incident analysis ?
Post-Incident Analysis Process: The company's process for conducting post-incident analysis is described as Equifax, .
Additional Questions
Incident Details
What was the most recent incident detected ?
Most Recent Incident Detected: The most recent incident detected was on 2021-10-02.
What was the most recent incident publicly disclosed ?
Most Recent Incident Publicly Disclosed: The most recent incident publicly disclosed was on 2022-04-29.
Impact of the Incidents
What was the most significant data compromised in an incident ?
Most Significant Data Compromised: The most significant data compromised in an incident were Names, Social Security numbers and .
What was the most significant system affected in an incident ?
Most Significant System Affected: The most significant system affected in an incident was manufacturing facilities.
Response to the Incidents
What third-party assistance was involved in the most recent incident ?
Third-Party Assistance in Most Recent Incident: The third-party assistance involved in the most recent incident was equifax, .
Data Breach Information
What was the most sensitive data compromised in a breach ?
Most Sensitive Data Compromised: The most sensitive data compromised in a breach were Names and Social Security numbers.
What was the number of records exposed in the most significant breach ?
Number of Records Exposed in Most Significant Breach: The number of records exposed in the most significant breach was 844.0.
References
What is the most recent source of information about an incident ?
Most Recent Source: The most recent source of information about an incident are Maine Office of the Attorney General and Acronis Cyber Protect (via article excerpt).
Investigation Status
What is the current status of the most recent investigation ?
Current Status of Most Recent Investigation: The current status of the most recent investigation is ongoing (ransom details and threat actor undisclosed).
Stakeholder and Customer Advisories
What was the most recent customer advisory issued ?
Most Recent Customer Advisory: The most recent customer advisory issued was an no significant consumer impact expected.
.png)
Latest Global CVEs (Not Company-Specific)
Description
Improper validation of specified type of input in M365 Copilot allows an unauthorized attacker to disclose information over a network.
Risk Information
cvss3
Base: 9.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:N
Description
Improper access control in Azure Front Door (AFD) allows an unauthorized attacker to elevate privileges over a network.
Risk Information
cvss3
Base: 9.8
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Description
Azure Entra ID Elevation of Privilege Vulnerability
Risk Information
cvss3
Base: 9.3
Severity: LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N
Description
Moonraker is a Python web server providing API access to Klipper 3D printing firmware. In versions 0.9.3 and below, instances configured with the "ldap" component enabled are vulnerable to LDAP search filter injection techniques via the login endpoint. The 401 error response message can be used to determine whether or not a search was successful, allowing for brute force methods to discover LDAP entries on the server such as user IDs and user attributes. This issue has been fixed in version 0.10.0.
Risk Information
cvss4
Base: 2.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Runtipi is a Docker-based, personal homeserver orchestrator that facilitates multiple services on a single server. Versions 3.7.0 and above allow an authenticated user to execute arbitrary system commands on the host server by injecting shell metacharacters into backup filenames. The BackupManager fails to sanitize the filenames of uploaded backups. The system persists user-uploaded files directly to the host filesystem using the raw originalname provided in the request. This allows an attacker to stage a file containing shell metacharacters (e.g., $(id).tar.gz) at a predictable path, which is later referenced during the restore process. The successful storage of the file is what allows the subsequent restore command to reference and execute it. This issue has been fixed in version 4.7.0.
Risk Information
cvss3
Base: 8.0
Severity: HIGH
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=ferrara-' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
