OR Canon attacked by ransomware which affects many services, such as her email Canon, Microsoft Teams, the company's website in the US, photo storage service, video cloud and other internal applications.
This attack results in the loss of data for users of the free storage capacity of 10 GB.
According to a company announcement released on the subdamain image.canon, its services Canon stopped operating on July 30, 2020 for six days. The subdamain image.canon started showing status updates yesterday, August 4th.
However, the latest status update was strange as it states that while the data was lost, "there is no image data leakage."
From the specific shutdown, the site Canon USA displays errors if you try to log in, as shown in the image below:
BleepingComputer also published a screenshot that supposedly shows the ransom note, and as it mentions it is a Maze ransomware.
According to BleepingComputer, the hackers claim to have stolen 10 TB of data from Canon, "10 terabytes of data, private databases, etc."
When they came in contact with the hacker he refused to give further information about the attack, such as the amount of ransom he is asking for, a proof of the stolen data and the extent of the attack.
The Maze ransomware targets businesses, which is secretly spread over a network, until it gains access to an administrator account and the system's Windows domain controller.
During this process, the malware steals unencrypted files from servers and backups. He uploads the stolen files to his own servers.
Once it has collected anything of value it starts running it ransomware across the network to encrypt all devices.
If the victim does not pay the ransom, the hacker behind the attack will publicly release the stolen victim files.
The Maze ransomware has hit many other high profile victims in the past, such as LG, Xerox, Conduent, MaxLinear, Cognizant, Chubb, VT San Antonio Aerospace, City of Pensacola, Florida and more.