Canon USA Websites Offline Following Cyber Incident, internal memo confirms ransomware attack
The website outage began Wednesday, two days after the imaging company issued a statement reporting that user data was missing from a cloud storage database. Brett Callow, a threat analyst with the security firm Emsisoft, says the ransomware group Maze has claimed responsibility for the security incident. So far, however, Maze has not posted to its website any exfiltrated data or updates on the attack, he adds.
Although there's no evidence connecting the website outages with the missing data, exfiltration of data is common Maze tactic, security experts note. Maze Group ransomware operators use 'name and shame' tactics whereby victims' data is exfiltrated prior to encryption and used to leverage ransomware payments," Walmsley says. "The bullying tactics used by such ransomware groups are making attacks even more expensive, and they are not going to stop any time soon, particularly within the current climate. These attackers will attempt to exploit, coerce and capitalize on organizations' valuable digital assets."