Security News > 2020 > November > Canon publicly confirms August ransomware attack, data theft
Canon has finally confirmed publicly that the cyberattack suffered in early August was caused by ransomware and that the hackers stole data from company servers.
In a public announcement on Wednesday evening, Canon says that the data accessed by the attacker included employees' names, Social Security number, date of birth, the number for the driver's license number or government-issued ID, the bank account number for direct deposits from Canon, and their electronic signature.
Shortly after the attack, Maze ransomware told BleepingComputer that they had stolen from Canon 10 terabytes of data and private databases before detonating the file-encrypting malware on August 5.
Canon issue and the general Canon USA outage caused by the attack were unrelated.
While it took three months to confirm the ransomware attack publicly, Canon admitted the nature of the security incident to its employees in an internal security notice on August 6.
News URL
Related news
- Microsoft Identifies Storm-0501 as Major Threat in Hybrid Cloud Ransomware Attacks (source)
- Embargo ransomware escalates attacks to cloud environments (source)
- JPCERT shares Windows Event Log tips to detect ransomware attacks (source)
- Ransomware attack forces UMC Health System to divert some patients (source)
- Underground ransomware claims attack on Casio, leaks stolen data (source)
- Casio confirms customer data stolen in a ransomware attack (source)
- Schools bombarded by nation-state attacks, ransomware gangs, and everyone in between (source)
- BianLian ransomware claims attack on Boston Children's Health Physicians (source)
- Microsoft: Ransomware Attacks Growing More Dangerous, Complex (source)
- Tech giant Nidec confirms data breach following ransomware attack (source)