Canon confirms August ransomware attack and stolen employee data

Back in August, it was reported that Canon suffered a ransomware attack that affected over 30 of its external and public services. In a recent statement, Canon confirmed that the incident occurred. The company added that the employees’ data were stolen in the attack, including their Social Security, driver’s license, and financial account number, electronic signature, date of birth, and more.

In a statement reported on Canon Watch, Canon writes that the ransomware attack was identified on 4 August and the company took measures straight away. It hired a cybersecurity firm, notified law enforcement, and “implemented additional security measures to further enhance the security of our network.”

According to the statement, the attack took place somewhere between 20 July and 6 August current year. Someone accessed the files on Canon’s server and stole information about former and current employees between 2005 to 2020:

“The information in the files included the individuals’ names and one or more of the following data elements: Social Security number, driver’s license number or government-issued identification number, financial account number provided to Canon for direct deposit, electronic signature, and date of birth.”

At the time when the ransomware attack was first reported, the Canon USA website was “under maintenance,” so it was apparently hit as well. But I think it’s much worse that someone got into the possession of names and sensitive data of Canon’s employees, both former and current.

There is no word on which exactly Canon’s websites were attacked, not whether there were some other data stolen. But if there is other news on this case, we’ll let keep you notified.

[via Canon Watch]