Housing provider toughens web security after 'organised crime' cyber attack
- Credit: Getty Images/iStockphoto
A housing provider says it has beefed up its online security after a "sophisticated" cyber attack prompted fears that customers' data could be leaked.
Flagship Group, based in Norwich, revealed a “major IT incident” had occurred on Sunday, November 1.
The attack, which left many of the company's systems offline, is believed to have been caused by ransomware known as Sodinokibi, via a suspected phishing attack.
The incident was reported to the Regulator of Social Housing, the National Cyber Security Centre (NCSC) and the Information Commissioner's Office (ICO).
At Breckland Council's Overview and Scrutiny Committee on January 14, Flagship's chief financial officer David Armstrong said an investigation was still in the "early stages", but there is no evidence of loss of personal data.
You may also want to watch:
He said: "Flagship was the subject of a professionally organised crime ransomware attack and at this stage, we have got no evidence of loss of personal data.
"Fortunately for us and unfortunately for them, our monitoring alert system flashed up that there was some unusual activity on the network and our IT team were able to force a rapid shutdown of all of our systems and networks, which meant that we were able to protect our back-up data and eject the criminals before they destroyed all the evidence of their activity.
- 1 Town leaves Christmas lights on throughout January
- 2 Armed police detain man after 18 hours of negotiations
- 3 Covid rips through care homes again with deaths almost doubling in a week
- 4 Egg and Spud Man's delivery service booms in lockdown
- 5 Gresham's School to erect 25 blue plaques for famous former pupils
- 6 Cliff fall warning issued for North Norfolk ahead of Storm Christoph
- 7 Where the pines meet the sea on the north Norfolk coast
- 8 Road in north Norfolk village shut due to leaking water main
- 9 Councillor asks people to speak up after confronting lockdown rule breakers
- 10 Football and fishing journalist and author Roy Webster dies aged 87
"After the incident, we employed a cyber specialist team to help us with the recovery process.
"We also employed a second professional group of cybersecurity specialists who are performing the forensic investigation for us."
Flagship Group owns some 31,000 homes in the East of England and employs 1,200 people in its facilities, repairs, maintenance and heating departments.
After the attack, believed to have originated from "a separate continent to the East", the group has issued staff training in the form of fake phishing emails, migrated its servers to a cloud-based system with a "host of additional security measures" and brought in multi-factor identification.
They also offered all staff and customers a free 12-month subscription to a fraud and web monitoring service which 495 members of staff and 1,028 customers have taken up the offer of.
Mr Armstrong said: "A cyber attack is a very worrying time for anybody who is a customer or indeed staff.
"These two projects have been a key part of our recovery plan and will help protect us even more going forward, but no system is going to be 100pc secure."