Canon has been hit by a ransomware attack that affects many services, such as Canon email, Microsoft Teams, the company's US website, photo storage service, cloud video and other internal applications.
This attack results in the loss of data for users of the free storage capacity of 10 GB.
According to a company announcement released on the image.canon subdomain, Canon services were down on July 30, 2020 for six days. The subdamain image.canon started showing updates status as of yesterday, August 4.
However, the latest status update was strange as it states that while the data was lost, "there is no image data leakage."
Today, the BleepingComputer he says that Canon "is experiencing widespread system issues affecting many applications, groups, emails and other systems that may not be available at this time."
From the particular interruption modeς, ο ιστότοπος Canon USA εμφανίζει σφάλματα σε περίπτωση που προσπαθήσετε να συνδεθείτε, όπως φαίνεται στην παρακάτω εικόνα:
BleepingComputer also published a screenshot that supposedly shows the ransom note, and as it mentions it is a Maze ransomware.
According to BleepingComputer, the hackers claim to have stolen 10 TB of data from Canon, "10 terabytes of data, private databases, etc."
When they came in contact with the hacker he refused to give further information about the attack, such as the amount of ransom he is asking for, a proof of the stolen data and the extent of the attack.
Το Maze ransomware στοχεύει σε επιχειρήσεις, το οποίο διαδίδεται κρυφά μέσω ενός δικτύου, έως ότου αποκτήσει πρόσβαση σε έναν account administrator and on the system's Windows domain controller.
During the duration αυτής της διαδικασίας, το κακόβουλο λειτουργικό κλέβει μη κρυπτογραφημένα αρχεία από ρους διακομιστές και αντίγραφα ασφαλείας. Τα κλεμμένα αρχεία τα ανεβάζει σε δικούς του servers.
Once it has collected anything of value ransomware starts running all over the network to encrypt all the devices.
If the victim does not pay the ransom, the hacker behind the attack will publicly release the stolen victim files.
Maze ransomware has hit many other high-profile victims in the past, including LG, Xerox, Conduent, MaxLinear, Cognizant, Chubb, VT San Antonio Aerospace, City of Pensacola, Florida and more.