A possible ransomware attack has reportedly forced Fujifilm to shut down the servers of its global network.
Fujifilm Holdings Corporation, trading as Fujifilm, or simply Fuji, is a Japanese multinational conglomerate headquartered in Tokyo, Japan, operating in the realms of photography, optics, office and medical electronics, biotechnology, and chemicals.
FUJIFILM Corporation is currently carrying out an investigation into possible unauthorized access to Unauthorized access to Fujifilm servers, as said by Company.
its server from outside of the company. As part of this investigation, the network is partially shut down and disconnected from external correspondence.
“We want to state what we understand as of now and the measures that the company has taken. In the late evening of June 1, 2021, we became aware of the possibility of a ransomware attack. As a result, we have taken measures to suspend all affected systems in coordination with our various global entities.”
“We are currently working to determine the extent and the scale of the issue. We sincerely apologize to our customers and business partners for the inconvenience this has caused.”
A recovery process is underway following the security incident. A notice posted Thursday on Fujifilm’s U.S. website said the incident would affect “all forms of communications,” including emails and phone calls, that come through corporate networks.
“Initial forensic analysis suggests that the ransomware attack on Fujifilm started with a Qbot trojan infection last month, which gave hackers a foothold in the company’s systems with which to deliver the secondary ransomware payload,” Ray Walsh, digital privacy expert at ProPrivacy, told TechCrunch. “Most recently, the Qbot trojan has been actively exploited by the REvil hacking collective, and it seems highly plausible that the Russian-based hackers are behind this cyberattack.”