Canon hit by alleged ransomware attack, cloud-stored photos lost

  • Canon hit by alleged ransomware attack, cloud-stored photos lost

Canon hit by alleged ransomware attack, cloud-stored photos lost

Just about a week after Canon rolled out a full-on cybersecurity toolkit for small businesses across the USA, the fan-favourite camera company's revealed that it's suffered two pretty serious ransomware attacks that've resulted in at least 10 terabytes of company-wide data being held up for an undisclosed ransom.

Canon says a number of photos and videos that its customer stashed in its free cloud storage service have been lost.

"After the investigation, we identified that some of the photo and video image files saved in the 10GB long-term storage prior to June 16, 2020 9:00am (JST) were lost".

In addition to the service, over two dozen Canon domains appear to be impacted by the ongoing outage.

BleepingComputer reports that an internal notification sent by Canon's IT department notified its employees about the "wide spread system issues affecting multiple applications, Teams, Email, and other systems".

As of now, Canon US website is unavailable.

Since then, BleepingComputer has obtained a partial screenshot of the alleged Canon ransom note, which we have been able to identify as from the Maze ransomware. An attack by a ransomware threat actor called "Maze" resulted in over 10TB of sensitive user data being compromised and at risk of being released in public. Maze declined to share "any further info about the attack including the ransom amount, proof of stolen data, and the amount of devices encrypted" BleepingComputer writes. And if Canon doesn't pay the ransom, they will be leaked publicly.

"The ransomware attack on Canon is yet another example of the Maze gang's sustained and brazen targeting of enterprises", said John Shier, Senior Security Advisor at cyber-security solutions provider Sophos.

Maze has claimed responsibility for other high-profile victims in the past, including LG, Xerox, Conduent, MaxLinear, Cognizant, Chubb, VT San Antonio Aerospace, the City of Pensacola, Florida, and more.

BleepingComputer has investigated the case and found that 34 Canon domains have been attacked.

This is a developing story and will be updated as more information is available.