Housing provider toughens web security after 'organised crime' cyber attack
- Credit: Getty Images/iStockphoto
A housing provider says it has beefed up its online security after a "sophisticated" cyber attack prompted fears that customers' data could be leaked.
Flagship Group, based in Norwich, revealed a “major IT incident” had occurred on Sunday, November 1.
The attack, which left many of the company's systems offline, is believed to have been caused by ransomware known as Sodinokibi, via a suspected phishing attack.
The incident was reported to the Regulator of Social Housing, the National Cyber Security Centre (NCSC) and the Information Commissioner's Office (ICO).
At Breckland Council's Overview and Scrutiny Committee on January 14, Flagship's chief financial officer David Armstrong said an investigation was still in the "early stages", but there is no evidence of loss of personal data.
You may also want to watch:
He said: "Flagship was the subject of a professionally organised crime ransomware attack and at this stage, we have got no evidence of loss of personal data.
"Fortunately for us and unfortunately for them, our monitoring alert system flashed up that there was some unusual activity on the network and our IT team were able to force a rapid shutdown of all of our systems and networks, which meant that we were able to protect our back-up data and eject the criminals before they destroyed all the evidence of their activity.
- 1 'That's when reality hit' - Footballer speaks about life changing weekend
- 2 'It's a dream' - Wedding shop opens up in Fakenham
- 3 7 outdoor events happening in Norfolk and Waveney this weekend
- 4 Door-to-door salesman charged after 'aggression' complaints
- 5 Norfolk has no Covid patients in critical care for first time in six months
- 6 Day of two halves - Footballer wins £80,000 and breaks leg in 24 hours
- 7 Stately home to host work by famous sculptor
- 8 On the buses: Mobile Covid vaccination service is launched
- 9 'Back doing what I love' - Fakenham welcomes another 'new normal'
- 10 Hairdressers excited to reopen salon and welcome back clients
"After the incident, we employed a cyber specialist team to help us with the recovery process.
"We also employed a second professional group of cybersecurity specialists who are performing the forensic investigation for us."
Flagship Group owns some 31,000 homes in the East of England and employs 1,200 people in its facilities, repairs, maintenance and heating departments.
After the attack, believed to have originated from "a separate continent to the East", the group has issued staff training in the form of fake phishing emails, migrated its servers to a cloud-based system with a "host of additional security measures" and brought in multi-factor identification.
They also offered all staff and customers a free 12-month subscription to a fraud and web monitoring service which 495 members of staff and 1,028 customers have taken up the offer of.
Mr Armstrong said: "A cyber attack is a very worrying time for anybody who is a customer or indeed staff.
"These two projects have been a key part of our recovery plan and will help protect us even more going forward, but no system is going to be 100pc secure."