Camera maker Canon has reportedly been affected by a ransomware attack. The attack resulted in several Canon websites going down and also apparently compromised almost 10 terabytes of data including private databases.
Bleeping Computer reports that the attackers used Maze ransomware in the attack. The publication managed to get hold of a portion of the ransomware note allegedly sent to Canon, which you can see below:
Soon after Canon became aware of the incident, the company reportedly sent a company-wide notification that reads “Canon USA is experiencing wide spread system issues, affecting multiple applications, Teams, Email, and other systems may not be available at this time.” In a statement, Canon said they are currently investigating the situation.
According to the report, the following Canon domains are down:
- www.canonusa.com
- www.canonbroadcast.com
- b2cweb.usa.canon.com
- canondv.com
- canobeam.com
- canoneos.com
- bjc8200.com
- canonhdec.com
- bjc8500.com
- usa.canon.com
- imagerunner.com
- multispot.com
- canoncamerashop.com
- canoncctv.com
- canonhelp.com
- bjc-8500.com
- canonbroadcast.com
- imageland.net
- consumer.usa.canon.com
- bjc-8200.com
- bjc3000.com
- downloadlibrary.usa.canon.com
- www.cusa.canon.com
- www.canondv.com
Canon’s image.canon domain went down on July 30 and became operational on August 4. However, ransomware operators apparently clarified BleepingComputer that image.canon domain’s outage is not related to their ransomware attack.
Going by Maze’s nature of operation, the attackers are likely to make the stolen data publicly available if the company fails to pay the demanded ransom. In case you didn’t know already, Maze has previously pulled off high-profile attacks on companies such as LG, Xerox, and Cognizant to name a few.
Before Canon, fitness brand Garmin suffered a ransomware attack last week. The attackers allegedly demanded the company a whopping $10 million ransom for handing over the decryption key.
