Canon admitted Maze ransomware attack and data breach

Canon has admitted that it has been hacked by the Maze ransomware. Let me remind you that the Bleeping Computer magazine reported on the attack, and Maze published a part of the stolen data.

According to media reports, the incident affected Canon email, Microsoft Teams, the company’s US website and other internal applications. At the same time, the failure of the cloud storage image.canon, which occurred at the same time, as a result of which users lost about 10 GB of information, supposedly was not associated with the attack.

Maze operators confirmed the attack, but did not take responsibility for the problems with image.canon.

We did attack Canon and on the morning of August 5th, we stole over 10 terabytes of data from the company, including private databases. However, we have nothing to do with the recent crash of image.canon.said the hackers.

Shortly after the attack, Maze operators began posting information stolen from the company on their website, according to Bleeping Computer. Moreover, initially the journalists believed that Canon paid the ransom to the cybercriminals, since the company managed to restore the operation of many systems in a very short time, but when the hackers started publishing the stolen data, it became clear that they had not received the ransom.

Now, after the investigation has been completed three months after the attack, Canon representatives have confirmed that the company has indeed fallen victim to the ransomware, and the hackers managed to steal data during the attack.

An attacker gained access to data such as employee names, social security numbers, birth dates, government issued driver’s or ID numbers, Canon direct deposit bank account numbers, and their digital signature.the company said in a statement released this week.

Company representatives did not specify which ransomware was responsible for the attack, and whether its operators received a ransom.

Let me remind you that the hack group behind the development of Maze stopped the operation of the ransomware in early November 2020. Experts believe that the ransomware Egregor, which is based on the same source code, became the Mazes “heir”.

Sending
User Review
0 (0 votes)
Comments Rating 0 (0 reviews)

About the author

Emma Davis

I'm writer and content manager (a short time ago completed a bachelor degree in Marketing from the Gustavus Adolphus College). For now, I have a deep drive to study cyber security.

Leave a Reply

Sending

This site uses Akismet to reduce spam. Learn how your comment data is processed.