Canon is also victim of ransomware attack

Andrew Cummings
August 9, 2020

"The bullying tactics used by such ransomware groups are making attacks even more expensive, and they are not going to stop any time soon, particularly within the current climate".

The image.canon site suffered an outage on July 30th, 2020, and over six days, the site would show status updates until it went back in service yesterday, August 4th.

Just about a week after Canon rolled out a full-on cybersecurity toolkit for small businesses across the USA, the fan-favourite camera company's revealed that it's suffered two pretty serious ransomware attacks that've resulted in at least 10 terabytes of company-wide data being held up for an undisclosed ransom.


The company announced Monday that some users' still image and video image data stored in its image.canon cloud photo platform was missing. This led BleepingComputer to believe there was more to the story and that they suffered a cyberattack. In order to conduct further investigation, we temporarily suspended both the mobile application and web browser service of image.canon.

Here is all you need to know about it. Canon's IT department has reportedly told the publication that it is now experiencing, "wide spread system issues affecting multiple applications, Teams, Email, and other systems may not be available at this time". The message read that the company "is experiencing widespread system issues" that affected multiple systems and applications like Microsoft Teams, company emails, and image.canon where Canon users save their photos.

As part of this outage, Canon USA's website is now displaying errors or page not found errors when visited. According to the reports, 10TB of data and private databases have been stolen.


The fact caused confusion and some in the media said they had been stolen photographs and videos saved by the users in the service storage in the cloud image.canon, though the very members of Maze denied that.

The ransomware used by Maze is characterized by compromising computers and spread through networks of devices to achieve access to an administrator account. The attack was claimed to be done by the Maze ransomware group but didn't provide any detail for verification. In the process, Maze encrypts files, steals that, they are not encrypted, and access to backup copies. This seems to identify it as a "Maze ransomeware" attack, which involves encrypting the data and then threatening to release it into the public domain unless a ransom is paid.

In a statement to BleepingComputer, Canon says they are "currently investigating the situation".


Other reports by iNewsToday

FOLLOW OUR NEWSPAPER