Canon was hit by two severe ransomware attacks that have resulted in at least10 terabytes of company-wide data being held up for an undisclosed ransom.
Canon was hit by two severe ransomware attacks that have resulted in at least10 terabytes of company-wide data being held up for an undisclosed ransom.
Canon has been one of the largest manufacturers of cameras, copiers, printers and is known for pioneering innovative imaging products.
The image.canon site went out of service on July 30, 2020, and over six days, the site got stuck. It was back to service on August 4th.
Canon notified its employees explaining that the company is suffering widespread system issues affecting multiple applications, Team's, email and other systems.
The first attack hit Canon’s internal systems, including it's Microsoft teams and company email accounts. Canon’s website that was down following the attack includes canonusa.com, usa.canon.com, canonhelp.com, imageland.net, consumer.usa.canon.com, cusa.canon.com and more.
Canon’s email service, US website and various internal applications are down after the ransomware attack. The USA’s websites are displaying a message that seems to suggest routine maintenance is taking place or error pages when visited.
From the screenshots obtained by BleepingComputer suggests that the firm was hit by Maze ransomware.
“We hacked your network, and all your files, documents, photos, databases and other important data are safely encrypted with reliable algorithms. You cannot access the files right now. But do not worry. You can get it back! ” reads the ransomware note.
The hackers also said that they had downloaded a lot of private data from the network, so in case of not contacting them, they would release this data online.
Maze ransomware operates by spreading through a network and gains access to the administrator. From here ransomware steals files from servers and sends them back to the attacker's servers. The ransomware encrypts the data and locks the company until the ransom demand is paid. Otherwise, the stolen information is leaked on Maze’s website. Maze ransomware has also hit other brands, including fitness brand Garmen in late July.
For the latest cyber threats and the latest hacking news please follow us on Facebook, Linkedin, and Twitter.
You may be interested in reading: How to Survive the COVID Time Cyber Security Threats?