According to the publication Bleeping computer, Canon was attacked by the Maze ransomware. The attack reportedly affected Canon email, Microsoft Teams, the company's US website, and other internal applications. Interestingly, the recent crash in the image.canon cloud storage, which resulted in users losing about 10 GB of information, did not appear to be related to the Maze attack.
The image.canon website crashed on July 30, 2020 and the resource did not work for six days, returning to service only on August 4. The official statement from Canon on this matter seemed rather strange to journalists, since it said that user data, unfortunately, was really lost, but there was no data leakage.
Later, an anonymous source of its own shared with the publication a screenshot of an internal corporate notice that Canon IT sent to employees.
The notice says the company is experiencing issues affecting a number of applications, Microsoft Teams, email and other systems that may be temporarily unavailable. Due to this failure, problems are also observed in the operation of the following domains:
In addition, the journalists had at their disposal a screenshot (alas, its publication did not publish it), which supposedly shows an extortionate message, which the publication's specialists identified as a ransom demand from the Maze ransomware.
Representatives of Bleeping Computer contacted Maze's operators, and they said that they did attack Canon and on the morning of August 5 stole more than 10 terabytes of data from the company, including private databases. However, the hackers also said they had nothing to do with the recent malfunction of image.canon, and refused to provide any additional information about the attack or evidence of data theft.
Canon representatives have so far refrained from commenting and reported only that the company is already investigating what happened.