We recently reported that Canon was attacked by the Maze ransomware. The company was supposed to have paid the ransom, but Maze operators began posting files stolen from Canon.
Maze ransomware operators said last week that they attacked Canon on the morning of August 5 and have stolen more than 10 terabytes of data from the company, including private databases.To Canon departments was sent an internal notice, which said that the company had problems affecting a number of applications, Microsoft Teams, e-mail, the company’s American website and other systems that may be temporarily unavailable. Due to this failure, there are also problems in the operation of several domains.
It was also assumed that the attack was related to a recent failure in the cloud storage image.canon, as a result of which users also lost about 10 GB of information. However, Maze operators confirmed the attack, but did not take responsibility for the problems with image.canon.
We did attack Canon and on the morning of August 5th, we stole over 10 terabytes of data from the company, including private databases. However, we have nothing to do with the recent crash of image.canon ”, – said the hackers.
Now Bleeping Computer journalists report that Maze operators have begun to publish information that previously stolen from the company on their website.
At the same time, earlier journalists believed that Canon paid the ransom to the cybercriminals, since the company managed to restore the operation of many systems in a very short time, but now the hackers began publishing the stolen data, and we can conclude that they did not receive the ransom.
As Canon was able to restore many systems in a short time, BleepingComputer believed that they had paid the ransom. It looks like we were wrong as Maze has started to publish Canon’s stolen data, which is only done after a ransom is not paid”, — reported Bleeping Computer journalists.
So far, the attackers claim that they have posted on their website only 5% of the stolen information. The published file is a 2.2 GB STRATEGICPLANNINGpart62.zip archive. According to the publication, it includes marketing materials, videos, and files related to the website of the affected company.
Bleeping Computer claims that the files do belong to Canon’s US division, but the archive does not contain any financial information, employee information, or other sensitive data.
