Canon publicly confirms August ransomware attack, data theft


Level 37
Feb 4, 2016
Canon has finally confirmed publicly that the cyberattack suffered in early August was caused by ransomware and that the hackers stole data from company servers.
BleepingComputer was the first to report the attack after tracking a suspicious outage on the cloud photo and video storage service ( that caused users to lose files.

Employee data stolen​

On August 5, Canon USA sent out a company-wide notification informing employees of extensive system issues that made multiple applications - Teams and email among them, unavailable.

A partial screenshot of the ransom note obtained by BleepingComputer showed that the outage had been caused by Maze ransomware, a group that typically steals data from compromised networks to pressure victims into paying up.